bazarbackdoor | 188ca8ecc44de1b7f602e883c3054dc392792c3631bf362b1bc4f3e1dba323e6 | Triage

Submit
Reports

Overview

overview

Static

static

jre-8u351-...64.exe

windows7-x64

jre-8u351-...64.exe

windows10-2004-x64

Sharing

General

Target

jre-8u351-windows-x64.exe
Size

84.5MB
Sample

230104-wvamfaha85
MD5

7542ec421a2f6e90751e8b64c22e0542
SHA1

d207d221a28ede5c2c8415f82c555989aa7068ba
SHA256

188ca8ecc44de1b7f602e883c3054dc392792c3631bf362b1bc4f3e1dba323e6
SHA512

8987bf8aa1b401815fa9850e56954db6015bdd06ce78b65ba435724582ffa615dee4e1452fa237c53257dca8ee97b469d01c27757a5f070ce6f807a4f81094bc
SSDEEP

1572864:ugyqUvFZpZDQBTgcJ5pWuqHRAOLut/+EDSSXXfDS2ZVw:ugzUnvDHq5pW1xAwutGEDxXXfGP

Score

10^/10

bazarbackdoor backdoor

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

jre-8u351-windows-x64.exe

Resource

win7-20220901-en

bazarbackdoor backdoor

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

jre-8u351-windows-x64.exe

Resource

win10v2004-20220901-en

bazarbackdoor backdoor

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  jre-8u351-windows-x64.exe
- Size
  
  84.5MB
- MD5
  
  7542ec421a2f6e90751e8b64c22e0542
- SHA1
  
  d207d221a28ede5c2c8415f82c555989aa7068ba
- SHA256
  
  188ca8ecc44de1b7f602e883c3054dc392792c3631bf362b1bc4f3e1dba323e6
- SHA512
  
  8987bf8aa1b401815fa9850e56954db6015bdd06ce78b65ba435724582ffa615dee4e1452fa237c53257dca8ee97b469d01c27757a5f070ce6f807a4f81094bc
- SSDEEP
  
  1572864:ugyqUvFZpZDQBTgcJ5pWuqHRAOLut/+EDSSXXfDS2ZVw:ugzUnvDHq5pW1xAwutGEDxXXfGP
Score

10^/10

bazarbackdoor backdoor
- BazarBackdoor
  Stealthy backdoor targeting corporate networks, believed to be developed by Trickbot's authors.
  backdoor bazarbackdoor
- Bazar/Team9 Backdoor payload
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

bazarbackdoorbackdoor

behavioral2

bazarbackdoorbackdoor

© 2018-2024

Terms | Privacy