General

  • Target

    zas7

  • Size

    341KB

  • Sample

    211021-r43blabcgl

  • MD5

    da6ab98216169c510efd941eb6b36f4e

  • SHA1

    ddd13309feec63769f45644842b1c5a3e600ab63

  • SHA256

    4e32dacb1a569ac92173f01f1a1bb7f32a03c292b9196521ad7b1e8b65a1e422

  • SHA512

    7fee7ff64f3b3fbc0649cd8befc3fe8c5d6df593c170e740b048b0976d522d2fd39d8c690b6037dc45304b230bf08ac0f0c3c8a4108a7fb2eb40a2ebf13d3dca

Malware Config

Targets

    • Target

      zas7

    • Size

      341KB

    • MD5

      da6ab98216169c510efd941eb6b36f4e

    • SHA1

      ddd13309feec63769f45644842b1c5a3e600ab63

    • SHA256

      4e32dacb1a569ac92173f01f1a1bb7f32a03c292b9196521ad7b1e8b65a1e422

    • SHA512

      7fee7ff64f3b3fbc0649cd8befc3fe8c5d6df593c170e740b048b0976d522d2fd39d8c690b6037dc45304b230bf08ac0f0c3c8a4108a7fb2eb40a2ebf13d3dca

    • Bazar Loader

      Detected loader normally used to deploy BazarBackdoor malware.

    • suricata: ET MALWARE BazaLoader Activity (GET)

      suricata: ET MALWARE BazaLoader Activity (GET)

    • Bazar/Team9 Loader payload

MITRE ATT&CK Matrix

Tasks