babadeda | 5f1f685f5e54bdf5cd5df850269613fe33807978eb17bd971dbd30b74ed1f540 | Triage

Resubmissions

11-09-2022 22:54

220911-2vyl6acda9 10

11-09-2022 22:42

220911-2mpdhscch2 10

Sharing

General

Target

5f1f685f5e54bdf5cd5df850269613fe33807978eb17bd971dbd30b74ed1f540
Size

24.0MB
Sample

220911-2vyl6acda9
MD5

7f9d539908b7af9249a0ee04f6033368
SHA1

476412ff81e197c7d024fc68097391e701cb4eab
SHA256

5f1f685f5e54bdf5cd5df850269613fe33807978eb17bd971dbd30b74ed1f540
SHA512

857bdfc278464129c2b4abfaa4d5ada3ba79c068015caf324a0f99a1694fdf0ce983ac35b10e08edd760a62611442c946e3c65cceb9ace0406e848630d720c00
SSDEEP

393216:MHVeiu9W4kene3OsJ+FJ9bJVyurr5i/t8i83tHxM4N14VOfTHQGSEFW2lJNt41:MHwiu9W4AesJ+VtV9yep9HxMK4VOfTH+

Score

10^/10

babadeda crypter loader

Malware Config

Targets

- Target
  
  5f1f685f5e54bdf5cd5df850269613fe33807978eb17bd971dbd30b74ed1f540
- Size
  
  24.0MB
- MD5
  
  7f9d539908b7af9249a0ee04f6033368
- SHA1
  
  476412ff81e197c7d024fc68097391e701cb4eab
- SHA256
  
  5f1f685f5e54bdf5cd5df850269613fe33807978eb17bd971dbd30b74ed1f540
- SHA512
  
  857bdfc278464129c2b4abfaa4d5ada3ba79c068015caf324a0f99a1694fdf0ce983ac35b10e08edd760a62611442c946e3c65cceb9ace0406e848630d720c00
- SSDEEP
  
  393216:MHVeiu9W4kene3OsJ+FJ9bJVyurr5i/t8i83tHxM4N14VOfTHQGSEFW2lJNt41:MHwiu9W4AesJ+VtV9yep9HxMK4VOfTH+
Score

10^/10

babadeda crypter loader
- Babadeda
  Babadeda is a crypter delivered as a legitimate installer and used to drop other malware families.
  loader crypter babadeda
- Babadeda Crypter
- Blocklisted process makes network request
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Install Root Certificate

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

babadedacrypterloader