Analysis
-
max time kernel
164s -
max time network
177s -
platform
windows10-2004_x64 -
resource
win10v2004-20220310-en -
submitted
22-03-2022 18:50
Static task
static1
Behavioral task
behavioral1
Sample
d409f6684fb0faedab51b52f3bd4c194.dll
Resource
win7-20220311-en
windows7_x64
0 signatures
0 seconds
Behavioral task
behavioral2
Sample
d409f6684fb0faedab51b52f3bd4c194.dll
Resource
win10v2004-20220310-en
windows10-2004_x64
0 signatures
0 seconds
General
-
Target
d409f6684fb0faedab51b52f3bd4c194.dll
-
Size
712KB
-
MD5
d409f6684fb0faedab51b52f3bd4c194
-
SHA1
bfb48417936a883d42e7fdee24f28ea3d3071732
-
SHA256
534b5a7b9bf643dfa743c6e533d2275a48c3e926c69042e935f2674cc1222464
-
SHA512
c26ec9850ddec7a8006489cfe06201594904b6960abac3d97617a8aebbbe624449f51511a0688b4de935ed615812ead4131488823718c5a571ec4eea8418b14a
Score
10/10
Malware Config
Signatures
-
Bazar Loader
Detected loader normally used to deploy BazarBackdoor malware.
-
Bazar/Team9 Loader payload 1 IoCs
Processes:
resource yara_rule behavioral2/memory/1552-134-0x000002590D8E0000-0x000002590D90B000-memory.dmp BazarLoaderVar6
Processes
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
memory/1552-134-0x000002590D8E0000-0x000002590D90B000-memory.dmpFilesize
172KB