bazarbackdoor | 065602c5b079b14608165cf71314c34017fa767a9c863e2f4cb29bb1c3195c35 | Triage

Submit
Reports

Overview

overview

Static

static

3

dl2.zip

windows10-2004-x64

Sharing

General

Target

dl2.zip
Size

460KB
Sample

231013-1hjf2abh4w
MD5

73ff2d6e4243f132fa8509cc2224a769
SHA1

6dd284977448acd43e84444397c6d9573e31274a
SHA256

065602c5b079b14608165cf71314c34017fa767a9c863e2f4cb29bb1c3195c35
SHA512

d76354357d52d9632fc1834bc1e23c49f55f16b2621cb9d61ad71cc959c7626f86e52213343469adbb4ced6e50e6bb927dbac2315cdbfb43412b6947badf17c1
SSDEEP

12288:nHmryUwHw0XQmwOUehCqd/lmwe7cfvDApjbk0Q:nHkRiVXQWlbfLCdQ

Score

10^/10

bazarbackdoor backdoor

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

dl2.zip

Resource

win10v2004-20230915-en

bazarbackdoor backdoor

windows10-2004-x64

3 signatures

1800 seconds

Malware Config

Targets

- Target
  
  dl2.zip
- Size
  
  460KB
- MD5
  
  73ff2d6e4243f132fa8509cc2224a769
- SHA1
  
  6dd284977448acd43e84444397c6d9573e31274a
- SHA256
  
  065602c5b079b14608165cf71314c34017fa767a9c863e2f4cb29bb1c3195c35
- SHA512
  
  d76354357d52d9632fc1834bc1e23c49f55f16b2621cb9d61ad71cc959c7626f86e52213343469adbb4ced6e50e6bb927dbac2315cdbfb43412b6947badf17c1
- SSDEEP
  
  12288:nHmryUwHw0XQmwOUehCqd/lmwe7cfvDApjbk0Q:nHkRiVXQWlbfLCdQ
Score

10^/10

bazarbackdoor backdoor
- BazarBackdoor
  Stealthy backdoor targeting corporate networks, believed to be developed by Trickbot's authors.
  backdoor bazarbackdoor
- Tries to connect to .bazar domain
  Attempts to lookup or connect to a .bazar domain, used by BazarBackdoor, Trickbot, and potentially others.
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

bazarbackdoorbackdoor

© 2018-2024

Terms | Privacy