General

  • Target

    13a754291f5def9c8fefe20729194da85af3076fe186c916af34d9867f0b7d3e

  • Size

    460KB

  • Sample

    220411-b4gf5aaeb2

  • MD5

    74436c1e05fcd124ae95440eeb0e63c3

  • SHA1

    f7ec7c1a43d2bd8d3e3ba1cbd9fc0b6a45a762f3

  • SHA256

    b262fee6c89bf09ff51a86d8c136b79c77204bb7c0590a24446ddb3ed1043784

  • SHA512

    db77790c1f0a016bed723079eade340f74a8205e158123197ebd1f27aab2baa2d850cf5df7c7738294f6c359c38fea7f94d33bba65c3b059deda0a488b696ca9

Malware Config

Extracted

Family

bazarloader

C2

reddew28c.bazar

Targets

    • Target

      13a754291f5def9c8fefe20729194da85af3076fe186c916af34d9867f0b7d3e

    • Size

      711KB

    • MD5

      2b4aa79ef90f188653f7942c6cecbd88

    • SHA1

      e6ca8abb9a9e8cededd88638b61218334295cac3

    • SHA256

      13a754291f5def9c8fefe20729194da85af3076fe186c916af34d9867f0b7d3e

    • SHA512

      db13d348068b56f43b8d7e3f9c2cba15a5ccf5993287af050cba4353ed4bf406dcb0690ce416fec57d881ade4f6f868f7016ea269b5551f18287b1d1beccbc5a

    • Bazar Loader

      Detected loader normally used to deploy BazarBackdoor malware.

    • Bazar/Team9 Loader payload

MITRE ATT&CK Matrix

Tasks