General

  • Target

    6181af181f759fd1017b5cc12c6ad5fec65675fb7ba78514d38c5cf410221330

  • Size

    460KB

  • Sample

    220405-zb245adcd4

  • MD5

    3c39740c98a41e58857490a2e5d6310d

  • SHA1

    c7eae0105b2fd39fc49c1c1841eba2d6f6c4acb3

  • SHA256

    f585d0473e3a502aa51ed0226b0b2019256e8c966a05fe706942fe1893295acb

  • SHA512

    9677714fd52ab34857ee1e613feb335d09ed1b1ca0bac12f63bb74440633e056ca112bd435991d9e4da5e461a9bd6d4d8e5f13e241dfac514cd66859bd366670

Malware Config

Extracted

Family

bazarloader

C2

reddew28c.bazar

Targets

    • Target

      6181af181f759fd1017b5cc12c6ad5fec65675fb7ba78514d38c5cf410221330

    • Size

      711KB

    • MD5

      39ca33e8bff9db9cbf4bb74f9ce7997a

    • SHA1

      69af050933c757f43e15501da532c37974565482

    • SHA256

      6181af181f759fd1017b5cc12c6ad5fec65675fb7ba78514d38c5cf410221330

    • SHA512

      4da9227c9f84523f2aef055323faa8e731dba5a06ab83045225932d8f2dfefde4da723e528b7ab3f9f12104daa74d5f87a633ec12c300e82b61a50de80d5c303

    • Bazar Loader

      Detected loader normally used to deploy BazarBackdoor malware.

    • Bazar/Team9 Loader payload

MITRE ATT&CK Matrix

Tasks