Overview

overview

10

Static

static

a08fa77833...42.dll

windows7_x64

10

a08fa77833...42.dll

windows10-2004_x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a08fa77833ace89dbc789d804f9f5632fec0b64a301567e07f495e98c33bee42

  • Size

    437KB

  • Sample

    220319-wlrjlafch9

  • MD5

    afe7a69ba07d6d8c7779b8d99277a87c

  • SHA1

    fa203f36e976c3ef1fbad3c9b5a55117497e5768

  • SHA256

    a08fa77833ace89dbc789d804f9f5632fec0b64a301567e07f495e98c33bee42

  • SHA512

    d347c0169a0edb846ac11b49b28b709327917e3e35d36ccc356b9377ee72982926485e1895797ac599a347782fcdcc1e1511352461138bc2a617c9da437ccef3

Score
10/10
zloadergoogleaktualizacijagoogleaktualizacija2botnettrojan

Malware Config

Extracted

Family

zloader

Botnet

googleaktualizacija

Campaign

googleaktualizacija2

C2

https://iqowijsdakm.com/gate.php

https://wiewjdmkfjn.com/gate.php

https://dksaoidiakjd.com/gate.php

https://iweuiqjdakjd.com/gate.php

https://yuidskadjna.com/gate.php

https://olksmadnbdj.com/gate.php

https://odsakmdfnbs.com/gate.php

https://odsakjmdnhsaj.com/gate.php

https://odjdnhsaj.com/gate.php

https://odoishsaj.com/gate.php
Attributes
  • build_id

    156

rc4.plain
rsa_pubkey.plain

Targets

    • Target

      a08fa77833ace89dbc789d804f9f5632fec0b64a301567e07f495e98c33bee42

    • Size

      437KB

    • MD5

      afe7a69ba07d6d8c7779b8d99277a87c

    • SHA1

      fa203f36e976c3ef1fbad3c9b5a55117497e5768

    • SHA256

      a08fa77833ace89dbc789d804f9f5632fec0b64a301567e07f495e98c33bee42

    • SHA512

      d347c0169a0edb846ac11b49b28b709327917e3e35d36ccc356b9377ee72982926485e1895797ac599a347782fcdcc1e1511352461138bc2a617c9da437ccef3

    Score
    10/10
    zloadergoogleaktualizacijagoogleaktualizacija2botnettrojan

    • Zloader, Terdot, DELoader, ZeusSphinx

      Zloader is a malware strain that was initially discovered back in August 2015.

      trojanbotnetzloader
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks