youtube.mov

Target

youtube.mov

Size

214KB

Sample

220425-c5jtbafedj

Score

10 ^/10

MD5

9a4ef0169f86641aa99017049de272f5

SHA1

82e1a3868eff88753fe30abedf7c83620aaddd13

SHA256

d21d616f6052e8b62292fcc6d9fd9ee2a3b549c59ca76aa8ef5a96cd163512ac

SHA512

9b9bff3e64ee7f060679b3ff8704b8f89057748906198c674e7ebec7a51e33023af119997877790837389905090d57559eadc49811f53973b7ed91f3552c9e84

Extracted

Family	bazarloader
C2	148.163.42.213 5.255.102.10 188.127.235.177 23.160.193.221 reddew28c.bazar bluehail.bazar whitestorm9p.bazar 148.163.42.213 5.255.102.10 188.127.235.177 23.160.193.221 reddew28c.bazar bluehail.bazar whitestorm9p.bazar

Target

youtube.mov

MD5

9a4ef0169f86641aa99017049de272f5

Filesize

214KB

Score

10^/10

SHA1

82e1a3868eff88753fe30abedf7c83620aaddd13

SHA256

d21d616f6052e8b62292fcc6d9fd9ee2a3b549c59ca76aa8ef5a96cd163512ac

SHA512

9b9bff3e64ee7f060679b3ff8704b8f89057748906198c674e7ebec7a51e33023af119997877790837389905090d57559eadc49811f53973b7ed91f3552c9e84

Signatures

Bazar Loader
Description

Detected loader normally used to deploy BazarBackdoor malware.
Tags

loader dropper bazarloader

Related Tasks

behavioral1 behavioral2

Collection

Command and Control

Credential Access

Defense Evasion

Discovery

Execution

Exfiltration

Impact

Initial Access

Lateral Movement

Persistence

Privilege Escalation

static1

behavioral1

bazarloader dropper loader

10^/10

behavioral2

bazarloader dropper loader

10^/10

Extracted

Tags

Signatures

Bazar Loader

Description

Tags

Related Tasks

static1

behavioral1

behavioral2