General
-
Target
min_rtt_scapy-nuit.exe
-
Size
27.8MB
-
Sample
221221-bf48aaee5s
-
MD5
45b0b63f24fe84df75ee6687255bf437
-
SHA1
081117fb9f5ba96b1f8f17ff7d049aa15cd91b3d
-
SHA256
984ad5e9c502cd45ac4c0c425a2d374d558c0786098208a7094f7240ae40a555
-
SHA512
395b12599e6c3811f0324c072cc6529350d8df86cb7b2972cee5f11410245b26d1253120df502e21122d1dd35866ff5746e830955086fceb08963c7c616f11cd
-
SSDEEP
393216:mn83+C8f1UabxN5+p5zKw3Wgkry0UgW3Ei8M9la7Ky9YQPMSG6C3c3moU4Ijl:LN8aatN5mzNGBJc3Eoy7NxWWmkIZ
Static task
static1
Behavioral task
behavioral1
Sample
min_rtt_scapy-nuit.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
min_rtt_scapy-nuit.exe
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
min_rtt_scapy-nuit.exe
-
Size
27.8MB
-
MD5
45b0b63f24fe84df75ee6687255bf437
-
SHA1
081117fb9f5ba96b1f8f17ff7d049aa15cd91b3d
-
SHA256
984ad5e9c502cd45ac4c0c425a2d374d558c0786098208a7094f7240ae40a555
-
SHA512
395b12599e6c3811f0324c072cc6529350d8df86cb7b2972cee5f11410245b26d1253120df502e21122d1dd35866ff5746e830955086fceb08963c7c616f11cd
-
SSDEEP
393216:mn83+C8f1UabxN5+p5zKw3Wgkry0UgW3Ei8M9la7Ky9YQPMSG6C3c3moU4Ijl:LN8aatN5mzNGBJc3Eoy7NxWWmkIZ
Score10/10-
BazarBackdoor
Stealthy backdoor targeting corporate networks, believed to be developed by Trickbot's authors.
-
Bazar/Team9 Backdoor payload
-
Executes dropped EXE
-
Loads dropped DLL
-