General
-
Target
paraplanner.docx
-
Size
174KB
-
Sample
220404-d7b2xsabe5
-
MD5
ef224d17c7b2d2887a238e037496ae83
-
SHA1
aece94262ddca2bf181f02c17ec93d35fc3aab91
-
SHA256
48d33f902d5d81182b60d6a3f1ccb88dde3538a4a07abf40617dc12e039fb7bd
-
SHA512
edb0d3a70da93f93b7255a674f6d630f50f125a689ee7225d85b44963b43ad7cbe10ee67ba81cfe83537c155aa8852443ffb69dba6d497751863a4917bca5a81
Static task
static1
Behavioral task
behavioral1
Sample
paraplanner.dll
Resource
win7-20220310-en
Behavioral task
behavioral2
Sample
paraplanner.dll
Resource
win10v2004-20220331-en
Malware Config
Extracted
bazarloader
144.217.50.242
5.39.63.103
94.140.113.53
185.163.45.95
reddew28c.bazar
bluehail.bazar
whitestorm9p.bazar
Targets
-
-
Target
paraplanner.docx
-
Size
174KB
-
MD5
ef224d17c7b2d2887a238e037496ae83
-
SHA1
aece94262ddca2bf181f02c17ec93d35fc3aab91
-
SHA256
48d33f902d5d81182b60d6a3f1ccb88dde3538a4a07abf40617dc12e039fb7bd
-
SHA512
edb0d3a70da93f93b7255a674f6d630f50f125a689ee7225d85b44963b43ad7cbe10ee67ba81cfe83537c155aa8852443ffb69dba6d497751863a4917bca5a81
Score10/10-
Adds Run key to start application
-