bazarbackdoor | hxxps://cdn[.]discordapp[.]com/attachments/1094613042223906866/1094918598583140362/game_botter[.]rar | Triage

Submit
Reports

Overview

overview

Static

static

1

URLScan

urlscan

1

https://cdn.discorda...

windows10-2004-x64

Sharing

General

Target

https://cdn.discordapp.com/attachments/1094613042223906866/1094918598583140362/game_botter.rar
Sample

230410-lq333sac8s

Score

10^/10

bazarbackdoor backdoor pyinstaller

Static task

static1

URLScan task

urlscan1

Behavioral task

behavioral1

Sample

https://cdn.discordapp.com/attachments/1094613042223906866/1094918598583140362/game_botter.rar

Resource

win10v2004-20230220-en

bazarbackdoor backdoor pyinstaller

windows10-2004-x64

15 signatures

150 seconds

Malware Config

Targets

- Target
  
  https://cdn.discordapp.com/attachments/1094613042223906866/1094918598583140362/game_botter.rar
Score

10^/10

bazarbackdoor backdoor pyinstaller
- BazarBackdoor
  Stealthy backdoor targeting corporate networks, believed to be developed by Trickbot's authors.
  backdoor bazarbackdoor
- Bazar/Team9 Backdoor payload
- Executes dropped EXE
- Loads dropped DLL
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

urlscan1

behavioral1

bazarbackdoorbackdoorpyinstaller

© 2018-2024

Terms | Privacy