General

  • Target

    min_rtt_scapy-nuit.exe

  • Size

    27.8MB

  • Sample

    221221-bf48aaee5s

  • MD5

    45b0b63f24fe84df75ee6687255bf437

  • SHA1

    081117fb9f5ba96b1f8f17ff7d049aa15cd91b3d

  • SHA256

    984ad5e9c502cd45ac4c0c425a2d374d558c0786098208a7094f7240ae40a555

  • SHA512

    395b12599e6c3811f0324c072cc6529350d8df86cb7b2972cee5f11410245b26d1253120df502e21122d1dd35866ff5746e830955086fceb08963c7c616f11cd

  • SSDEEP

    393216:mn83+C8f1UabxN5+p5zKw3Wgkry0UgW3Ei8M9la7Ky9YQPMSG6C3c3moU4Ijl:LN8aatN5mzNGBJc3Eoy7NxWWmkIZ

Score
10/10

Malware Config

Targets

    • Target

      min_rtt_scapy-nuit.exe

    • Size

      27.8MB

    • MD5

      45b0b63f24fe84df75ee6687255bf437

    • SHA1

      081117fb9f5ba96b1f8f17ff7d049aa15cd91b3d

    • SHA256

      984ad5e9c502cd45ac4c0c425a2d374d558c0786098208a7094f7240ae40a555

    • SHA512

      395b12599e6c3811f0324c072cc6529350d8df86cb7b2972cee5f11410245b26d1253120df502e21122d1dd35866ff5746e830955086fceb08963c7c616f11cd

    • SSDEEP

      393216:mn83+C8f1UabxN5+p5zKw3Wgkry0UgW3Ei8M9la7Ky9YQPMSG6C3c3moU4Ijl:LN8aatN5mzNGBJc3Eoy7NxWWmkIZ

    Score
    10/10
    • BazarBackdoor

      Stealthy backdoor targeting corporate networks, believed to be developed by Trickbot's authors.

    • Bazar/Team9 Backdoor payload

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v6

Tasks