Overview

overview

7

Static

static

1

bdcamsetup.exe

windows7-x64

7

bdcamsetup.exe

windows10-2004-x64

7

Resubmissions

05/02/2023, 21:06

230205-zx85kaah38 7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    bdcamsetup.exe

  • Size

    21.3MB

  • Sample

    230205-zx85kaah38

  • MD5

    ff33a6101796fe31cfadbe2fc3e3a822

  • SHA1

    3476419775cfa638711d340eab1a12397eaf14a7

  • SHA256

    1815488eaf4f43b667859b509e09cf1049b801fe8d46e3a190f2c40271b5b37d

  • SHA512

    f919bcd718ffce33147e834e1c089587d1cb037ba03073be1858df0afd02b17e5e07102dbe830c517a45892c9443766e64097c4cea5c519ee38452a4aedbe82b

  • SSDEEP

    393216:ptmgrOepJCO8Vk5PATwZJ2Zi53woEYxJEspG3JhPuXHvtWNfznm4h4vv:nmg1Dx8GBAyci53wDmehJ0PYNr/h4vv

Score
7/10
discoverypersistence

Malware Config

Targets

    • Target

      bdcamsetup.exe

    • Size

      21.3MB

    • MD5

      ff33a6101796fe31cfadbe2fc3e3a822

    • SHA1

      3476419775cfa638711d340eab1a12397eaf14a7

    • SHA256

      1815488eaf4f43b667859b509e09cf1049b801fe8d46e3a190f2c40271b5b37d

    • SHA512

      f919bcd718ffce33147e834e1c089587d1cb037ba03073be1858df0afd02b17e5e07102dbe830c517a45892c9443766e64097c4cea5c519ee38452a4aedbe82b

    • SSDEEP

      393216:ptmgrOepJCO8Vk5PATwZJ2Zi53woEYxJEspG3JhPuXHvtWNfznm4h4vv:nmg1Dx8GBAyci53wDmehJ0PYNr/h4vv

    Score
    7/10
    discoverypersistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Registers COM server for autorun

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops file in System32 directory

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks