Analysis
-
max time kernel
148s -
max time network
193s -
platform
windows10-2004_x64 -
resource
win10v2004-20220414-en -
submitted
10-05-2022 19:11
Static task
static1
Behavioral task
behavioral1
Sample
6f507a0c448c1cafdf502fdb1d1e70affce420022d63c1816bec111246575936.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
6f507a0c448c1cafdf502fdb1d1e70affce420022d63c1816bec111246575936.exe
Resource
win10v2004-20220414-en
General
-
Target
6f507a0c448c1cafdf502fdb1d1e70affce420022d63c1816bec111246575936.exe
-
Size
121KB
-
MD5
57e4b93639e8719dd46caf64cbaad633
-
SHA1
2854f262b10cd323acde6bf1bd61017118abb757
-
SHA256
6f507a0c448c1cafdf502fdb1d1e70affce420022d63c1816bec111246575936
-
SHA512
a19682425d6ef78c7e834cadb3fc563e14a7785a45066c173cd6c3de89c214231662e6bcf60c87149d4d694f86c55e532194754ceda5ef63166de4b8f2003e2f
Malware Config
Signatures
-
BazarBackdoor 1 IoCs
Stealthy backdoor targeting corporate networks, believed to be developed by Trickbot's authors.
Processes:
description flow ioc HTTP URL 44 https://194.5.249.136/0299886584792392818826571828483090449592/2