doubleback | 90f7051bb59f9ee7dbfee8a1fc9882dbba383fbe1e647eff0466830d2ce71ce2 | Triage

Submit
Reports

Overview

overview

Static

static

1236.ps1

windows7_x64

1

1236.ps1

windows10-2004_x64

Sharing

General

Target

1236.ps1
Size

177KB
Sample

220603-qrjhaabfdr
MD5

0336381c76595f013baed58abebec38c
SHA1

46b35dc1fe0eca4dc45b35db87d5f6220456df17
SHA256

90f7051bb59f9ee7dbfee8a1fc9882dbba383fbe1e647eff0466830d2ce71ce2
SHA512

d6a3c890d9d6981b8b001b747b1b9b319a4d34e293eaf4d8a9f10b16b5a2af0d94c01fff3b532aa90200561957d2386f89c32eafed4613dda005bc2a6923c7f6

Score

10^/10

doubleback backdoor

Static task

static1

Behavioral task

behavioral1

Sample

1236.ps1

Resource

win7-20220414-en

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

1236.ps1

Resource

win10v2004-20220414-en

doubleback backdoor

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  1236.ps1
- Size
  
  177KB
- MD5
  
  0336381c76595f013baed58abebec38c
- SHA1
  
  46b35dc1fe0eca4dc45b35db87d5f6220456df17
- SHA256
  
  90f7051bb59f9ee7dbfee8a1fc9882dbba383fbe1e647eff0466830d2ce71ce2
- SHA512
  
  d6a3c890d9d6981b8b001b747b1b9b319a4d34e293eaf4d8a9f10b16b5a2af0d94c01fff3b532aa90200561957d2386f89c32eafed4613dda005bc2a6923c7f6
Score

10^/10

doubleback backdoor
- DoubleBack
  DoubleBack is a modular backdoor first seen in December 2020.
  backdoor doubleback
- DoubleBack x64 Payload
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

doublebackbackdoor

© 2018-2024

Terms | Privacy