bdbcfb13266ff69d0090bca96aabb4ae7f973743262954b8afd1c2a9c0f80ae1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bdbcfb13266ff69d0090bca96aabb4ae7f973743262954b8afd1c2a9c0f80ae1
Size

32KB
Sample

221201-w7aszagf73
MD5

0d9d83caf46db7211b4f5e3d7584984d
SHA1

3a8f3859fa02adba5aa631f8b141f2543aa28fb5
SHA256

bdbcfb13266ff69d0090bca96aabb4ae7f973743262954b8afd1c2a9c0f80ae1
SHA512

3563aca6b826b454f2afaef0a4f88bd63fa4d222aa5a0f5a07c116a5999e7a544f4707d9befcc73dfa373a5822dba535b2309f3a9313c860bb3fa92b7763fb7b
SSDEEP

384:2VcdCEKRq1pi5s4VmWnWOMU3rhPpKzS5kf1Wwonq584sjtNR:qULi5WOMU5pqYkf1WnqW4sh

Score

8^/10

persistence

Malware Config

Targets

- Target
  
  bdbcfb13266ff69d0090bca96aabb4ae7f973743262954b8afd1c2a9c0f80ae1
- Size
  
  32KB
- MD5
  
  0d9d83caf46db7211b4f5e3d7584984d
- SHA1
  
  3a8f3859fa02adba5aa631f8b141f2543aa28fb5
- SHA256
  
  bdbcfb13266ff69d0090bca96aabb4ae7f973743262954b8afd1c2a9c0f80ae1
- SHA512
  
  3563aca6b826b454f2afaef0a4f88bd63fa4d222aa5a0f5a07c116a5999e7a544f4707d9befcc73dfa373a5822dba535b2309f3a9313c860bb3fa92b7763fb7b
- SSDEEP
  
  384:2VcdCEKRq1pi5s4VmWnWOMU3rhPpKzS5kf1Wwonq584sjtNR:qULi5WOMU5pqYkf1WnqW4sh
Score

8^/10

persistence
- Modifies AppInit DLL entries
  persistence
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2