bdb0b97b0c573b1f76593bd6b26908624791b9eff0ed8ef800d951beb4b35c0c | Triage

Submit
Reports

Overview

overview

9

Static

static

8

bdb0b97b0c...0c.exe

windows7-x64

9

bdb0b97b0c...0c.exe

windows10-2004-x64

9

Sharing

General

Target

bdb0b97b0c573b1f76593bd6b26908624791b9eff0ed8ef800d951beb4b35c0c
Size

27KB
Sample

220918-25hnpaebd2
MD5

0849dbb6b9806a5a8ba38ad93752e299
SHA1

08c0c9fa51fe9476114faf5f069e3cf54171d438
SHA256

bdb0b97b0c573b1f76593bd6b26908624791b9eff0ed8ef800d951beb4b35c0c
SHA512

6cf88331823bd2edda69944efdef3947ba6054ec349d7213af6f50296eb7e3dcb782703cde700e4b44dc3a93b527bdee6e3350dab85780fa6449fa9f83126b0c
SSDEEP

384:9E1799xP6DUbQnP3S2WlkhOTM/Yt0iTH7ns7kOUWrdKU+muPexp0yS/dRIo:9k99xPjkPNWKwMQvTHrD+hqNGEDdf

Score

9^/10

upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

bdb0b97b0c573b1f76593bd6b26908624791b9eff0ed8ef800d951beb4b35c0c.exe

Resource

win7-20220812-en

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

bdb0b97b0c573b1f76593bd6b26908624791b9eff0ed8ef800d951beb4b35c0c.exe

Resource

win10v2004-20220901-en

windows10-2004-x64

13 signatures

150 seconds

Malware Config

Targets

- Target
  
  bdb0b97b0c573b1f76593bd6b26908624791b9eff0ed8ef800d951beb4b35c0c
- Size
  
  27KB
- MD5
  
  0849dbb6b9806a5a8ba38ad93752e299
- SHA1
  
  08c0c9fa51fe9476114faf5f069e3cf54171d438
- SHA256
  
  bdb0b97b0c573b1f76593bd6b26908624791b9eff0ed8ef800d951beb4b35c0c
- SHA512
  
  6cf88331823bd2edda69944efdef3947ba6054ec349d7213af6f50296eb7e3dcb782703cde700e4b44dc3a93b527bdee6e3350dab85780fa6449fa9f83126b0c
- SSDEEP
  
  384:9E1799xP6DUbQnP3S2WlkhOTM/Yt0iTH7ns7kOUWrdKU+muPexp0yS/dRIo:9k99xPjkPNWKwMQvTHrD+hqNGEDdf
Score

9^/10

upx
- ACProtect 1.3x - 1.4x DLL software
  Detects file using ACProtect software.
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy