Resubmissions
05-02-2022 12:51
220205-p3t8gsbeb2 10General
-
Target
915fcafe990b9110a4e0994d37f8beda66e80aba5174e686bc1d4de13836a7df
-
Size
421KB
-
Sample
220205-p3t8gsbeb2
-
MD5
897827f98772919254d6b257d8b8fc11
-
SHA1
3752186f6b38c55aa49aa9cbc895fbbe4328b869
-
SHA256
915fcafe990b9110a4e0994d37f8beda66e80aba5174e686bc1d4de13836a7df
-
SHA512
e0a82d23955bbb9716f5fabf6007e9086d466aac2f0606347bf4234e16119bbfe8b9cb45ef3ba7a93acd9f915785245c383f53d1c662dfe2253d26c5f6e92bba
Malware Config
Extracted
zloader
April23Fixed
April23Fixed
http://wmwifbajxxbcxmucxmlc.com/post.php
http://onfovdaqqrwbvdfoqnof.com/post.php
http://cmmxhurildiigqghlryq.com/post.php
http://nmqsmbiabjdnuushksas.com/post.php
http://fvqlkgedqjiqgapudkgq.com/post.php
http://iawfqecrwohcxnhwtofa.com/post.php
http://nlbmfsyplohyaicmxhum.com/post.php
http://snnmnkxdhflwgthqismb.com/post.php
-
build_id
120
Targets
-
-
Target
915fcafe990b9110a4e0994d37f8beda66e80aba5174e686bc1d4de13836a7df
-
Size
421KB
-
MD5
897827f98772919254d6b257d8b8fc11
-
SHA1
3752186f6b38c55aa49aa9cbc895fbbe4328b869
-
SHA256
915fcafe990b9110a4e0994d37f8beda66e80aba5174e686bc1d4de13836a7df
-
SHA512
e0a82d23955bbb9716f5fabf6007e9086d466aac2f0606347bf4234e16119bbfe8b9cb45ef3ba7a93acd9f915785245c383f53d1c662dfe2253d26c5f6e92bba
Score10/10-
Zloader, Terdot, DELoader, ZeusSphinx
Zloader is a malware strain that was initially discovered back in August 2015.
-
Blocklisted process makes network request
-
Suspicious use of SetThreadContext
-