bazarloader | 8f69a3a077e12b5e4ab5a446606f0fc226b827dcafb4f8e1768253b252dca895 | Triage

Submit
Reports

Overview

overview

Static

static

WGEcMZQA.dll

windows7_x64

Resubmissions

16-10-2021 09:54

211016-lxlsdacfdp 10

16-10-2021 09:34

211016-ljrrgacfbr 10

Sharing

General

Target

WGEcMZQA.dll
Size

153KB
Sample

211016-lxlsdacfdp
MD5

3398fc38ef281ae2268478dd621445a2
SHA1

40da9f5cbba17001805ef6ebd920f99743f044cc
SHA256

8f69a3a077e12b5e4ab5a446606f0fc226b827dcafb4f8e1768253b252dca895
SHA512

6b8552d47ea9b007b24309054484189f7f9c5d4612bbf12581762831cb62e19d7c1c809359905b3ad74b76f8e8fc4379ac763aed22c142f1c5fa4c531751e622

Score

10^/10

bazarloader dropper loader

Static task

static1

Behavioral task

behavioral1

Sample

WGEcMZQA.dll

Resource

win7-en-20211014

bazarloader dropper loader

windows7_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  WGEcMZQA.dll
- Size
  
  153KB
- MD5
  
  3398fc38ef281ae2268478dd621445a2
- SHA1
  
  40da9f5cbba17001805ef6ebd920f99743f044cc
- SHA256
  
  8f69a3a077e12b5e4ab5a446606f0fc226b827dcafb4f8e1768253b252dca895
- SHA512
  
  6b8552d47ea9b007b24309054484189f7f9c5d4612bbf12581762831cb62e19d7c1c809359905b3ad74b76f8e8fc4379ac763aed22c142f1c5fa4c531751e622
Score

10^/10

bazarloader dropper loader
- Bazar Loader
  Detected loader normally used to deploy BazarBackdoor malware.
  loader dropper bazarloader
- Bazar/Team9 Loader payload
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

bazarloaderdropperloader

© 2018-2024

Terms | Privacy