bazarbackdoor | bbd26c4e7db42429d9c8c490d3efaf16f931a242604c6c63c75e61273c7228d0 | Triage

Submit
Reports

Overview

overview

Static

static

boxer_trc_...it.exe

windows7-x64

boxer_trc_...it.exe

windows10-2004-x64

Sharing

General

Target

boxer_trc_scapy_nuit.exe
Size

27.7MB
Sample

221220-18hmesbc26
MD5

513eaa6bd4f931d466081d8ee891fe4c
SHA1

13cb25d88efa00940fa94856b8d8b6055b202f8c
SHA256

bbd26c4e7db42429d9c8c490d3efaf16f931a242604c6c63c75e61273c7228d0
SHA512

cdb5bc3074df2ccb159e1d29882ca34894e9e75b37a446778f623cc8b841ae56a3947d57aa9019f51d34e997f6bf57aed1c06e57047003f1962c17a11a0756e6
SSDEEP

786432:hWp7wgQUxg6huraRylbyfgx51HKmOVbfA/4t/e:MWSgqyj51qmONfT/e

Score

10^/10

bazarbackdoor backdoor

Static task

static1

Behavioral task

behavioral1

Sample

boxer_trc_scapy_nuit.exe

Resource

win7-20221111-en

bazarbackdoor backdoor

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

boxer_trc_scapy_nuit.exe

Resource

win10v2004-20220901-en

bazarbackdoor backdoor

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  boxer_trc_scapy_nuit.exe
- Size
  
  27.7MB
- MD5
  
  513eaa6bd4f931d466081d8ee891fe4c
- SHA1
  
  13cb25d88efa00940fa94856b8d8b6055b202f8c
- SHA256
  
  bbd26c4e7db42429d9c8c490d3efaf16f931a242604c6c63c75e61273c7228d0
- SHA512
  
  cdb5bc3074df2ccb159e1d29882ca34894e9e75b37a446778f623cc8b841ae56a3947d57aa9019f51d34e997f6bf57aed1c06e57047003f1962c17a11a0756e6
- SSDEEP
  
  786432:hWp7wgQUxg6huraRylbyfgx51HKmOVbfA/4t/e:MWSgqyj51qmONfT/e
Score

10^/10

bazarbackdoor backdoor
- BazarBackdoor
  Stealthy backdoor targeting corporate networks, believed to be developed by Trickbot's authors.
  backdoor bazarbackdoor
- Bazar/Team9 Backdoor payload
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

bazarbackdoorbackdoor

behavioral2

bazarbackdoorbackdoor

© 2018-2024

Terms | Privacy