General
-
Target
ba32f63679760a34efd78fb148785a5b9074a406a0a0bf5881e7ccdc15a5d70f
-
Size
266KB
-
Sample
220319-sjbtkscdeq
-
MD5
2f6c7d402b28d88e9e827c7b4428d896
-
SHA1
a5b21236fde0e6892b1e492e2b9bff02732c40d2
-
SHA256
ba32f63679760a34efd78fb148785a5b9074a406a0a0bf5881e7ccdc15a5d70f
-
SHA512
aeed467e22a5cc03c670e392f51c8d0f6e28d05ba9d33a111bbb6ec9771851c18304db4192c9b65e70ab80fc56557039d319be191e32b82def049ae7716552e9
Static task
static1
Behavioral task
behavioral1
Sample
ba32f63679760a34efd78fb148785a5b9074a406a0a0bf5881e7ccdc15a5d70f.exe
Resource
win7-20220311-en
Behavioral task
behavioral2
Sample
ba32f63679760a34efd78fb148785a5b9074a406a0a0bf5881e7ccdc15a5d70f.exe
Resource
win10v2004-20220310-en
Malware Config
Extracted
bazarloader
54.193.186.118
13.57.15.8
Targets
-
-
Target
ba32f63679760a34efd78fb148785a5b9074a406a0a0bf5881e7ccdc15a5d70f
-
Size
266KB
-
MD5
2f6c7d402b28d88e9e827c7b4428d896
-
SHA1
a5b21236fde0e6892b1e492e2b9bff02732c40d2
-
SHA256
ba32f63679760a34efd78fb148785a5b9074a406a0a0bf5881e7ccdc15a5d70f
-
SHA512
aeed467e22a5cc03c670e392f51c8d0f6e28d05ba9d33a111bbb6ec9771851c18304db4192c9b65e70ab80fc56557039d319be191e32b82def049ae7716552e9
Score10/10-
Bazar/Team9 Loader payload
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-