General
-
Target
13dbe66c35c7d09b65668826797ace714aaffd59a7c650cd14564991a7c57e6f
-
Size
720KB
-
Sample
220220-l2vk3sbca7
-
MD5
cd6b9af8db078afe074b12a4fd0a5869
-
SHA1
b747823681fa365a7e4a897db1862b007950cd26
-
SHA256
13dbe66c35c7d09b65668826797ace714aaffd59a7c650cd14564991a7c57e6f
-
SHA512
68a1ca174dfacb9f0faf7ce9c6eb27dd9acd18165954440c8b60e1dbe6e67297ebf7bbe73c39fded8e314ddcd550d6a5d3a739fd7669c682207137f535c19744
Static task
static1
Behavioral task
behavioral1
Sample
13dbe66c35c7d09b65668826797ace714aaffd59a7c650cd14564991a7c57e6f.exe
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
13dbe66c35c7d09b65668826797ace714aaffd59a7c650cd14564991a7c57e6f.exe
Resource
win10v2004-en-20220113
Malware Config
Targets
-
-
Target
13dbe66c35c7d09b65668826797ace714aaffd59a7c650cd14564991a7c57e6f
-
Size
720KB
-
MD5
cd6b9af8db078afe074b12a4fd0a5869
-
SHA1
b747823681fa365a7e4a897db1862b007950cd26
-
SHA256
13dbe66c35c7d09b65668826797ace714aaffd59a7c650cd14564991a7c57e6f
-
SHA512
68a1ca174dfacb9f0faf7ce9c6eb27dd9acd18165954440c8b60e1dbe6e67297ebf7bbe73c39fded8e314ddcd550d6a5d3a739fd7669c682207137f535c19744
Score10/10-
BazarBackdoor
Stealthy backdoor targeting corporate networks, believed to be developed by Trickbot's authors.
-
Tries to connect to .bazar domain
Attempts to lookup or connect to a .bazar domain, used by BazarBackdoor, Trickbot, and potentially others.
-