bda2bab8218c4537c2af7237e188bc92607b2c483593818b3395cd18fa7c01ef | Triage

Submit
Reports

Overview

overview

Static

static

8

bda2bab821...ef.exe

windows7-x64

bda2bab821...ef.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

bda2bab8218c4537c2af7237e188bc92607b2c483593818b3395cd18fa7c01ef
Size

62KB
Sample

220918-253zmaaafk
MD5

6988d48397f1155eede8bfda51e0662c
SHA1

b8ebb71324105aac168058c443b711c2df4a8d47
SHA256

bda2bab8218c4537c2af7237e188bc92607b2c483593818b3395cd18fa7c01ef
SHA512

9be08d8f03caf6774ce3185671919a01adbe8bd99d783f6d9a1b52bf41ce8bc66a312be0564e6f26216f75ebf9ec378e26c5a7e7ec744653c787d60810bbc33a
SSDEEP

1536:yeN7nm7MhiIUU/zP4i5+xgk/MuZIdWHCphjT3v0UzfTz:dhnDxUOPRNkvZIQiPTMUzfTz

Score

10^/10

persistence upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

bda2bab8218c4537c2af7237e188bc92607b2c483593818b3395cd18fa7c01ef.exe

Resource

win7-20220812-en

persistence upx

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

bda2bab8218c4537c2af7237e188bc92607b2c483593818b3395cd18fa7c01ef.exe

Resource

win10v2004-20220812-en

persistence upx

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  bda2bab8218c4537c2af7237e188bc92607b2c483593818b3395cd18fa7c01ef
- Size
  
  62KB
- MD5
  
  6988d48397f1155eede8bfda51e0662c
- SHA1
  
  b8ebb71324105aac168058c443b711c2df4a8d47
- SHA256
  
  bda2bab8218c4537c2af7237e188bc92607b2c483593818b3395cd18fa7c01ef
- SHA512
  
  9be08d8f03caf6774ce3185671919a01adbe8bd99d783f6d9a1b52bf41ce8bc66a312be0564e6f26216f75ebf9ec378e26c5a7e7ec744653c787d60810bbc33a
- SSDEEP
  
  1536:yeN7nm7MhiIUU/zP4i5+xgk/MuZIdWHCphjT3v0UzfTz:dhnDxUOPRNkvZIQiPTMUzfTz
Score

10^/10

persistence upx
- Modifies WinLogon for persistence
  persistence
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Deletes itself
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Winlogon Helper DLL

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy