bazarloader | 5a7d360225defcc80b5d30efb865f76d377aaa044b5ec42c2c40a3359c968f3e | Triage

Submit
Reports

Overview

overview

Static

static

3

6bf2a52b57...18.dll

windows7-x64

6bf2a52b57...18.dll

windows10-2004-x64

Sharing

General

Target

6bf2a52b5755de865d691045806936f9_JaffaCakes118
Size

353KB
Sample

240401-jhm1sahb32
MD5

6bf2a52b5755de865d691045806936f9
SHA1

70c164d08608478ba36e1479f0277dffc4fd951f
SHA256

5a7d360225defcc80b5d30efb865f76d377aaa044b5ec42c2c40a3359c968f3e
SHA512

b7a3c199e2ae2904907726b831ba00222c734e69079574aa6ddbf023bbe5cb922a7cbd0130f3557b67ccc624264fb516824e1087fde4fbcce3681b66c16782bf
SSDEEP

6144:pHJGKt24zrhvsoWb9BHohiA2lZYjQ7B6TuvJ0VPRevpyB4LvW:pHkKFBsoeoV2lZYs7Duap

Score

10^/10

bazarloader dropper loader

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

6bf2a52b5755de865d691045806936f9_JaffaCakes118.dll

Resource

win7-20240221-en

bazarloader dropper loader

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

6bf2a52b5755de865d691045806936f9_JaffaCakes118.dll

Resource

win10v2004-20240226-en

bazarloader dropper loader

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Extracted

Family

bazarloader

C2

reddew28c.bazar

Targets

- Target
  
  6bf2a52b5755de865d691045806936f9_JaffaCakes118
- Size
  
  353KB
- MD5
  
  6bf2a52b5755de865d691045806936f9
- SHA1
  
  70c164d08608478ba36e1479f0277dffc4fd951f
- SHA256
  
  5a7d360225defcc80b5d30efb865f76d377aaa044b5ec42c2c40a3359c968f3e
- SHA512
  
  b7a3c199e2ae2904907726b831ba00222c734e69079574aa6ddbf023bbe5cb922a7cbd0130f3557b67ccc624264fb516824e1087fde4fbcce3681b66c16782bf
- SSDEEP
  
  6144:pHJGKt24zrhvsoWb9BHohiA2lZYjQ7B6TuvJ0VPRevpyB4LvW:pHkKFBsoeoV2lZYs7Duap
Score

10^/10

bazarloader dropper loader
- Bazar Loader
  Detected loader normally used to deploy BazarBackdoor malware.
  loader dropper bazarloader
- Bazar/Team9 Loader payload
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

bazarloaderdropperloader

behavioral2

bazarloaderdropperloader

© 2018-2024

Terms | Privacy