Overview

overview

10

Static

static

9a582f1e0e...7b.dll

windows7_x64

10

9a582f1e0e...7b.dll

windows10-2004_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9a582f1e0ef2309e249e13f6081358e7e65ce6c9d511a19b71ea1591f0e8dc7b

  • Size

    506KB

  • Sample

    220307-paebkahagm

  • MD5

    7169f8d61dc89387045e83b141d833cf

  • SHA1

    ab763e20f4d55dd9e8c72ee8478d827473081740

  • SHA256

    9a582f1e0ef2309e249e13f6081358e7e65ce6c9d511a19b71ea1591f0e8dc7b

  • SHA512

    45966a0ac75fe28cd596b1140ab564115a508986a06ca454a4697485ec79ec82ff1d6c640cbdac232ac1a797e7b6c99c141f45a600afe8bcc282b304579050f1

Score
10/10
zloadergoogleaktualizacijagoogleaktualizacija2botnettrojan

Malware Config

Extracted

Family

zloader

Botnet

googleaktualizacija

Campaign

googleaktualizacija2

C2

https://iqowijsdakm.com/gate.php

https://wiewjdmkfjn.com/gate.php

https://dksaoidiakjd.com/gate.php

https://iweuiqjdakjd.com/gate.php

https://yuidskadjna.com/gate.php

https://olksmadnbdj.com/gate.php

https://odsakmdfnbs.com/gate.php

https://odsakjmdnhsaj.com/gate.php

https://odjdnhsaj.com/gate.php

https://odoishsaj.com/gate.php
Attributes
  • build_id

    156

rc4.plain
rsa_pubkey.plain

Targets

    • Target

      9a582f1e0ef2309e249e13f6081358e7e65ce6c9d511a19b71ea1591f0e8dc7b

    • Size

      506KB

    • MD5

      7169f8d61dc89387045e83b141d833cf

    • SHA1

      ab763e20f4d55dd9e8c72ee8478d827473081740

    • SHA256

      9a582f1e0ef2309e249e13f6081358e7e65ce6c9d511a19b71ea1591f0e8dc7b

    • SHA512

      45966a0ac75fe28cd596b1140ab564115a508986a06ca454a4697485ec79ec82ff1d6c640cbdac232ac1a797e7b6c99c141f45a600afe8bcc282b304579050f1

    Score
    10/10
    zloadergoogleaktualizacijagoogleaktualizacija2botnettrojan

    • Zloader, Terdot, DELoader, ZeusSphinx

      Zloader is a malware strain that was initially discovered back in August 2015.

      trojanbotnetzloader
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks