buer | 44dc7a78801f705233f20d4b37c0e8f72805a86418ba3fe786ec0b14a481cf07 | Triage

Submit
Reports

Overview

overview

Static

static

44dc7a7880...07.exe

windows7_x64

44dc7a7880...07.exe

windows10-2004_x64

Sharing

General

Target

44dc7a78801f705233f20d4b37c0e8f72805a86418ba3fe786ec0b14a481cf07
Size

276KB
Sample

220707-wjlkkafgb9
MD5

f112db5fe30ce25faac045d2eb5b9e14
SHA1

346fa76565cb15beef5306466ad99be143f5a76f
SHA256

44dc7a78801f705233f20d4b37c0e8f72805a86418ba3fe786ec0b14a481cf07
SHA512

81e8b5f313b5ca4e4696ccb33a3381c24e57f2ce6700767c7e81db5579239d096ba24082cd429610eb6c91ad5cc3c4d9a786b6cd2178f0f8c25b1179efe9412f

Score

10^/10

buer loader persistence

Static task

static1

Behavioral task

behavioral1

Sample

44dc7a78801f705233f20d4b37c0e8f72805a86418ba3fe786ec0b14a481cf07.exe

Resource

win7-20220414-en

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

44dc7a78801f705233f20d4b37c0e8f72805a86418ba3fe786ec0b14a481cf07.exe

Resource

win10v2004-20220414-en

buer loader persistence

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Extracted

Family

buer

C2

http://koralak.hk/

Targets

- Target
  
  44dc7a78801f705233f20d4b37c0e8f72805a86418ba3fe786ec0b14a481cf07
- Size
  
  276KB
- MD5
  
  f112db5fe30ce25faac045d2eb5b9e14
- SHA1
  
  346fa76565cb15beef5306466ad99be143f5a76f
- SHA256
  
  44dc7a78801f705233f20d4b37c0e8f72805a86418ba3fe786ec0b14a481cf07
- SHA512
  
  81e8b5f313b5ca4e4696ccb33a3381c24e57f2ce6700767c7e81db5579239d096ba24082cd429610eb6c91ad5cc3c4d9a786b6cd2178f0f8c25b1179efe9412f
Score

10^/10

buer loader persistence
- Buer
  Buer is a new modular loader first seen in August 2019.
  loader buer
- Buer Loader
  Detects Buer loader in memory or disk.
  loader
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

buerloaderpersistence

© 2018-2024

Terms | Privacy