bd09958b20df9781bc42a862c8503c3f5f5561e0fbb845254f8e9eefd5d99dc8 | Triage

Submit
Reports

Overview

overview

8

Static

static

bd09958b20...c8.exe

windows7-x64

8

bd09958b20...c8.exe

windows10-2004-x64

8

Sharing

General

Target

bd09958b20df9781bc42a862c8503c3f5f5561e0fbb845254f8e9eefd5d99dc8
Size

602KB
Sample

221123-l9nshadd98
MD5

424d468627a560a5f52dc65b1ec3e449
SHA1

ef1d92298d5ab1151f561d63cc0bfc350d2c3214
SHA256

bd09958b20df9781bc42a862c8503c3f5f5561e0fbb845254f8e9eefd5d99dc8
SHA512

ea483fce8cd2f6ac1412c6bcb28efce9793b2f27100b4e017df536b8f5bd39edecc2b9625ec3a0ce68ff8e2cc26c36321e3a1de086c226a06e2c621122e18674
SSDEEP

12288:GIny5DYTt/PtFQfTOQBmFtzVlb1YNdW3i3HAQySpp4Bok+:oUTt/PtpFtzV9239ywmu

Score

8^/10

discovery

Static task

static1

Behavioral task

behavioral1

Sample

bd09958b20df9781bc42a862c8503c3f5f5561e0fbb845254f8e9eefd5d99dc8.exe

Resource

win7-20221111-en

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

bd09958b20df9781bc42a862c8503c3f5f5561e0fbb845254f8e9eefd5d99dc8.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

12 signatures

150 seconds

Malware Config

Targets

- Target
  
  bd09958b20df9781bc42a862c8503c3f5f5561e0fbb845254f8e9eefd5d99dc8
- Size
  
  602KB
- MD5
  
  424d468627a560a5f52dc65b1ec3e449
- SHA1
  
  ef1d92298d5ab1151f561d63cc0bfc350d2c3214
- SHA256
  
  bd09958b20df9781bc42a862c8503c3f5f5561e0fbb845254f8e9eefd5d99dc8
- SHA512
  
  ea483fce8cd2f6ac1412c6bcb28efce9793b2f27100b4e017df536b8f5bd39edecc2b9625ec3a0ce68ff8e2cc26c36321e3a1de086c226a06e2c621122e18674
- SSDEEP
  
  12288:GIny5DYTt/PtFQfTOQBmFtzVlb1YNdW3i3HAQySpp4Bok+:oUTt/PtpFtzV9239ywmu
Score

8^/10

discovery
- Drops file in Drivers directory
- Executes dropped EXE
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy