zloader | 0049ff8214d96fe8a7f5dd40934dad318226ef6b7222aea2a730b7983734816a | Triage

Resubmissions

03-09-2024 03:25

240903-dy1nxswbpl 10

Sharing

General

Target

BBA Launcher.exe
Size

82.4MB
Sample

240903-dy1nxswbpl
MD5

66f2815e2431a06df98a10cc0e959aeb
SHA1

ea1fdc54179389415574ab646fd1274d3fb069b7
SHA256

0049ff8214d96fe8a7f5dd40934dad318226ef6b7222aea2a730b7983734816a
SHA512

fc282ae7a98e87904ca71110f6f77711ec30e57e01a533654fe88055f8a90fa8d5c32d98082be8ffa793c11a81fcca5ac5d6a422b23f3d7aeb484487c62b3849
SSDEEP

1572864:fye4hJceZDtbX2LKRymNEkfWx0/sX2ZNt/dZUrNVF6EG2U/o/wU:fye4BtbGGoe9+xy82LtnGzFpn/P

Score

10^/10

zloader

Malware Config

Targets

- Target
  
  BBA Launcher.exe
- Size
  
  168.1MB
- MD5
  
  69ba8c5f1933cbd68f4a53b3633d6ad4
- SHA1
  
  743128ea353a60d1db06eeacec9f4c38f9a78d73
- SHA256
  
  963c4e4a24bcb04da89c66c8b4c63469c7806556a48125ce5d17491f233c6c4f
- SHA512
  
  b37aa402fc099192f14c9fdf06a0d91014897ee8e499443305295edb5472faf932714fff0bfaf5e5de8265dd87ec3297609c91a5509ab1f96fa8ef6cb8e68f6b
- SSDEEP
  
  1572864:+QqT4eFUirK1e2zSQ5Rcw/N5cae/bHhrPdacyodvcPSBoHESUlyAzl/:4BKRcAMyAzB
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Legitimate hosting services abused for malware hosting/C2
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1