Overview

overview

10

Static

static

microsoft_...mp.dll

windows7_x64

10

microsoft_...mp.dll

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    microsoft_shared.tmp

  • Size

    470KB

  • Sample

    210330-ma7amtr87n

  • MD5

    5ab3e07ce737bb6b3d4e025fc13096fa

  • SHA1

    850d397ca30d1ca42f8c225b00ab003ae6a5cb3e

  • SHA256

    de47a37cb8c666a36b7e9315bfebf0996c0c92747a2f4029b4fafb2ba9f2b275

  • SHA512

    0b4e1f846733d52f074a92e042de26a7606227aaf7c204ddd29d4e42fb789b622c6fcd95f946f2f7ec3c5bba495b5e244474916533eb3a41e8d9289f86034006

Score
10/10
zloaderpersonalpersonalbotnettrojan

Malware Config

Extracted

Family

zloader

Botnet

personal

Campaign

personal

C2

https://iqowijsdakm.com/gate.php

https://wiewjdmkfjn.com/gate.php

https://dksaoidiakjd.com/gate.php

https://iweuiqjdakjd.com/gate.php

https://yuidskadjna.com/gate.php

https://olksmadnbdj.com/gate.php

https://odsakmdfnbs.com/gate.php

https://odsakjmdnhsaj.com/gate.php

https://odjdnhsaj.com/gate.php

https://odoishsaj.com/gate.php
rc4.plain
rsa_pubkey.plain

Targets

    • Target

      microsoft_shared.tmp

    • Size

      470KB

    • MD5

      5ab3e07ce737bb6b3d4e025fc13096fa

    • SHA1

      850d397ca30d1ca42f8c225b00ab003ae6a5cb3e

    • SHA256

      de47a37cb8c666a36b7e9315bfebf0996c0c92747a2f4029b4fafb2ba9f2b275

    • SHA512

      0b4e1f846733d52f074a92e042de26a7606227aaf7c204ddd29d4e42fb789b622c6fcd95f946f2f7ec3c5bba495b5e244474916533eb3a41e8d9289f86034006

    Score
    10/10
    zloaderpersonalpersonalbotnettrojan

    • Zloader, Terdot, DELoader, ZeusSphinx

      Zloader is a malware strain that was initially discovered back in August 2015.

      trojanbotnetzloader
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks