bd115d081031665e37b566d458472e5ff850d0f794f0d580233efe5ae0aef912 | Triage

Submit
Reports

Overview

overview

8

Static

static

bd115d0810...12.exe

windows7-x64

8

bd115d0810...12.exe

windows10-2004-x64

8

Sharing

General

Target

bd115d081031665e37b566d458472e5ff850d0f794f0d580233efe5ae0aef912
Size

879KB
Sample

221123-k225gsaa47
MD5

1ce16812d9fe060307b3efdb75b16929
SHA1

3db6dc2eb56b794e7b943688640605f62dce0314
SHA256

bd115d081031665e37b566d458472e5ff850d0f794f0d580233efe5ae0aef912
SHA512

ed485f766f9027464bc441bc1c38401889aa38cd602409a19c07a54bfc582753d01b607631382e9298603aac0ddb30187b46a74e0c8a0996efba75ed4bae8e18
SSDEEP

12288:qat0EAH49n8BqByODm186QdHSP6HUb/avqOewPXkUXGB86k4GQSncwFuR9c2/N4v:lt24ZFDmKrSPQHTXkUXGi60/cwUR+v

Score

8^/10

upx

Static task

static1

Behavioral task

behavioral1

Sample

bd115d081031665e37b566d458472e5ff850d0f794f0d580233efe5ae0aef912.exe

Resource

win7-20220901-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

bd115d081031665e37b566d458472e5ff850d0f794f0d580233efe5ae0aef912.exe

Resource

win10v2004-20220812-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  bd115d081031665e37b566d458472e5ff850d0f794f0d580233efe5ae0aef912
- Size
  
  879KB
- MD5
  
  1ce16812d9fe060307b3efdb75b16929
- SHA1
  
  3db6dc2eb56b794e7b943688640605f62dce0314
- SHA256
  
  bd115d081031665e37b566d458472e5ff850d0f794f0d580233efe5ae0aef912
- SHA512
  
  ed485f766f9027464bc441bc1c38401889aa38cd602409a19c07a54bfc582753d01b607631382e9298603aac0ddb30187b46a74e0c8a0996efba75ed4bae8e18
- SSDEEP
  
  12288:qat0EAH49n8BqByODm186QdHSP6HUb/avqOewPXkUXGB86k4GQSncwFuR9c2/N4v:lt24ZFDmKrSPQHTXkUXGi60/cwUR+v
Score

8^/10

upx
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy