Overview

overview

10

Static

static

a4bb3e65ab...c6.dll

windows7_x64

10

a4bb3e65ab...c6.dll

windows10-2004_x64

10

Analysis

  • max time kernel
    132s
  • max time network
    136s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-en-20220113
  • submitted
    15-03-2022 14:58

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a4bb3e65ab8f6350868862fb71e29a1b92f11306400a2ce040b7c9d97bd466c6.dll

  • Size

    712KB

  • MD5

    0eac95acae7ebb02684fb3f41a3bf702

  • SHA1

    d7a45630ecb8e33e49776c908c0e353f0efab934

  • SHA256

    a4bb3e65ab8f6350868862fb71e29a1b92f11306400a2ce040b7c9d97bd466c6

  • SHA512

    023764e7cb799ccfca4f4201037e0b6c655ccc2590769037e24a294624cc869caef22add52a09af86f580e4ec6dfad41823b12e8619516eb3ccef063371236ed

Score
10/10
bazarloaderdropperloader

Malware Config

Signatures

  • Bazar Loader

    Detected loader normally used to deploy BazarBackdoor malware.

    loaderdropperbazarloader
  • Bazar/Team9 Loader payload 1 IoCs

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\a4bb3e65ab8f6350868862fb71e29a1b92f11306400a2ce040b7c9d97bd466c6.dll,#1
    1⤵
      PID:2380

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/2380-130-0x00000284E0010000-0x00000284E003B000-memory.dmp

      Filesize

      172KB

      Download