Overview

overview

10

Static

static

60f6d17eae...1e.dll

windows7_x64

10

60f6d17eae...1e.dll

windows10-2004_x64

10

Analysis

  • max time kernel
    4294184s
  • max time network
    146s
  • platform
    windows7_x64
  • resource
    win7-20220311-en
  • submitted
    17-03-2022 00:25

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    60f6d17eae0d1e85f8fa1874969d42087612183f9d66a43ab9c4c76b228ff71e.dll

  • Size

    712KB

  • MD5

    b298c51804877bcb23a4e898257c5929

  • SHA1

    5936f27b57b90ac6e258d34f36a7e8b9bdb5a222

  • SHA256

    60f6d17eae0d1e85f8fa1874969d42087612183f9d66a43ab9c4c76b228ff71e

  • SHA512

    cc66c4a0c25d7a0f4ff7813b8088a0eb042189aa42393688aa88db2e95cb31b55d15b21ccd8a5d86980f92aa6a2186b64fbc6f87407daab8f569cf0c928b9002

Score
10/10
bazarloaderdropperloader

Malware Config

Signatures

  • Bazar Loader

    Detected loader normally used to deploy BazarBackdoor malware.

    loaderdropperbazarloader
  • Bazar/Team9 Loader payload 1 IoCs

Processes

  • C:\Windows\system32\rundll32.exe
    rundll32.exe C:\Users\Admin\AppData\Local\Temp\60f6d17eae0d1e85f8fa1874969d42087612183f9d66a43ab9c4c76b228ff71e.dll,#1
    1⤵
      PID:1800

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/1800-54-0x00000000003A0000-0x00000000003CB000-memory.dmp

      Filesize

      172KB

      Download