Overview

overview

8

Static

static

bitdefende...ee.exe

windows7-x64

8

bitdefende...ee.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    bitdefender_avfree.exe

  • Size

    13.5MB

  • Sample

    230101-atbx8aah73

  • MD5

    eddede5f8a14ca3b8c75b6df27ec416f

  • SHA1

    6d8c82f95d10aeecbb58023da75ee9b075ef34f8

  • SHA256

    53549ae7b69464778948d58f6b263234d28c7604369f2fc8bb2698e44cc1e42a

  • SHA512

    6aff06d2e10bf2047281a0a0108fe7160858c119a6e77f5e16c86fbde96012a24bb16859a3279415547635402ee9a57b70a693326b13d3585eb529185881cfef

  • SSDEEP

    393216:w/jTIRW1kHluAEGQCacFJb544gPK2CDIc6AgWsSMscEw1AxT:Yj801kHlu7cFwPNcIc6AgcMdEa+T

Score
8/10
discovery

Malware Config

Targets

    • Target

      bitdefender_avfree.exe

    • Size

      13.5MB

    • MD5

      eddede5f8a14ca3b8c75b6df27ec416f

    • SHA1

      6d8c82f95d10aeecbb58023da75ee9b075ef34f8

    • SHA256

      53549ae7b69464778948d58f6b263234d28c7604369f2fc8bb2698e44cc1e42a

    • SHA512

      6aff06d2e10bf2047281a0a0108fe7160858c119a6e77f5e16c86fbde96012a24bb16859a3279415547635402ee9a57b70a693326b13d3585eb529185881cfef

    • SSDEEP

      393216:w/jTIRW1kHluAEGQCacFJb544gPK2CDIc6AgWsSMscEw1AxT:Yj801kHlu7cFwPNcIc6AgcMdEa+T

    Score
    8/10
    discovery

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks