Overview

overview

10

Static

static

e5480369_b...is.dll

windows7_x64

10

e5480369_b...is.dll

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e5480369_by_Libranalysis

  • Size

    619KB

  • Sample

    210430-3twptlr2sa

  • MD5

    e54803695352cd8a46fb303f6d83c4f5

  • SHA1

    246416a97b5d712495a17081456a3ceb4f6d2d2e

  • SHA256

    5e0362037ebe9276b9a253a66c233be67bb6ceedec997e9bd0faa294091eb52c

  • SHA512

    739de9da9b8755c34577801c4fa0b88a347012fc579a4ac4a4a2e6d4b1213e1ac585b1f1a9db59549693436eac6700ab57af4598ae0b3f2f8c32a86701f923fa

Score
10/10
zloadernut30/03botnettrojan

Malware Config

Extracted

Family

zloader

Botnet

nut

Campaign

30/03

C2

https://holacast.com/post.php

https://homeloansadvisor.in/post.php

https://hoteldonalala.com.mx/post.php

https://hotimobiliaria.com.br/post.php

https://hrdgschool.com/post.php

https://huloolcreations.com/post.php

https://hyundainhatrang.vn/post.php

https://iaikotasemarang.id/post.php
rc4.plain
rsa_pubkey.plain

Targets

    • Target

      e5480369_by_Libranalysis

    • Size

      619KB

    • MD5

      e54803695352cd8a46fb303f6d83c4f5

    • SHA1

      246416a97b5d712495a17081456a3ceb4f6d2d2e

    • SHA256

      5e0362037ebe9276b9a253a66c233be67bb6ceedec997e9bd0faa294091eb52c

    • SHA512

      739de9da9b8755c34577801c4fa0b88a347012fc579a4ac4a4a2e6d4b1213e1ac585b1f1a9db59549693436eac6700ab57af4598ae0b3f2f8c32a86701f923fa

    Score
    10/10
    zloadernut30/03botnettrojan

    • Zloader, Terdot, DELoader, ZeusSphinx

      Zloader is a malware strain that was initially discovered back in August 2015.

      trojanbotnetzloader
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks