General

  • Target

    30b2922c78a07dcd65a6f93886e7efcd6c3c883c70c2dc5f37cf41e50f240903

  • Size

    574KB

  • Sample

    220320-dy9xlagac4

  • MD5

    f7079cd6f7bb70b8a341af27c62be1aa

  • SHA1

    d29014883d17739d350d5a85306fb8dff550661e

  • SHA256

    30b2922c78a07dcd65a6f93886e7efcd6c3c883c70c2dc5f37cf41e50f240903

  • SHA512

    53b6defd951e3a8fc0a55817d5c1d728b29cadaeed22d5a357bb5aae261d0e2709aef73e8588e0e8abee15cc048746ec48e1086d48e95fe3a919730acfc1d37d

Malware Config

Targets

    • Target

      30b2922c78a07dcd65a6f93886e7efcd6c3c883c70c2dc5f37cf41e50f240903

    • Size

      574KB

    • MD5

      f7079cd6f7bb70b8a341af27c62be1aa

    • SHA1

      d29014883d17739d350d5a85306fb8dff550661e

    • SHA256

      30b2922c78a07dcd65a6f93886e7efcd6c3c883c70c2dc5f37cf41e50f240903

    • SHA512

      53b6defd951e3a8fc0a55817d5c1d728b29cadaeed22d5a357bb5aae261d0e2709aef73e8588e0e8abee15cc048746ec48e1086d48e95fe3a919730acfc1d37d

    • Bazar Loader

      Detected loader normally used to deploy BazarBackdoor malware.

    • BazarBackdoor

      Stealthy backdoor targeting corporate networks, believed to be developed by Trickbot's authors.

    • Bazar/Team9 Backdoor payload

    • Bazar/Team9 Loader payload

MITRE ATT&CK Matrix

Tasks