bazarbackdoor | 13dbe66c35c7d09b65668826797ace714aaffd59a7c650cd14564991a7c57e6f | Triage

Submit
Reports

Overview

overview

Static

static

13dbe66c35...6f.exe

windows7_x64

13dbe66c35...6f.exe

windows10-2004_x64

Sharing

General

Target

13dbe66c35c7d09b65668826797ace714aaffd59a7c650cd14564991a7c57e6f
Size

720KB
Sample

220220-l2vk3sbca7
MD5

cd6b9af8db078afe074b12a4fd0a5869
SHA1

b747823681fa365a7e4a897db1862b007950cd26
SHA256

13dbe66c35c7d09b65668826797ace714aaffd59a7c650cd14564991a7c57e6f
SHA512

68a1ca174dfacb9f0faf7ce9c6eb27dd9acd18165954440c8b60e1dbe6e67297ebf7bbe73c39fded8e314ddcd550d6a5d3a739fd7669c682207137f535c19744

Score

10^/10

bazarbackdoor backdoor

Static task

static1

Behavioral task

behavioral1

Sample

13dbe66c35c7d09b65668826797ace714aaffd59a7c650cd14564991a7c57e6f.exe

Resource

win7-en-20211208

bazarbackdoor backdoor

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

13dbe66c35c7d09b65668826797ace714aaffd59a7c650cd14564991a7c57e6f.exe

Resource

win10v2004-en-20220113

bazarbackdoor backdoor

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  13dbe66c35c7d09b65668826797ace714aaffd59a7c650cd14564991a7c57e6f
- Size
  
  720KB
- MD5
  
  cd6b9af8db078afe074b12a4fd0a5869
- SHA1
  
  b747823681fa365a7e4a897db1862b007950cd26
- SHA256
  
  13dbe66c35c7d09b65668826797ace714aaffd59a7c650cd14564991a7c57e6f
- SHA512
  
  68a1ca174dfacb9f0faf7ce9c6eb27dd9acd18165954440c8b60e1dbe6e67297ebf7bbe73c39fded8e314ddcd550d6a5d3a739fd7669c682207137f535c19744
Score

10^/10

bazarbackdoor backdoor
- BazarBackdoor
  Stealthy backdoor targeting corporate networks, believed to be developed by Trickbot's authors.
  backdoor bazarbackdoor
- Tries to connect to .bazar domain
  Attempts to lookup or connect to a .bazar domain, used by BazarBackdoor, Trickbot, and potentially others.
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

bazarbackdoorbackdoor

behavioral2

bazarbackdoorbackdoor

© 2018-2024

Terms | Privacy