babadeda | 7d580d1416efb8a4475d4d682ca4e53b96482ef437770e66cb2ca8bcfbc075c9 | Triage

Submit
Reports

Overview

overview

Static

static

1

150857f47c...ec.exe

windows7-x64

150857f47c...ec.exe

windows10-2004-x64

Sharing

General

Target

150857f47c2baeebe41028b415ba30ec
Size

6.4MB
Sample

231230-lwyqjscccr
MD5

150857f47c2baeebe41028b415ba30ec
SHA1

04c42c467ecfb1ba1be93ea8d093514581b72c92
SHA256

7d580d1416efb8a4475d4d682ca4e53b96482ef437770e66cb2ca8bcfbc075c9
SHA512

34e14180c9643c13a41c5c2aba823191cbc6b3d77c355bb0150bb93bca8d8bda40c77b0dde4171a58e4ec7c17d1b1133d9b8603b6534f921d4535b45c6cca30e
SSDEEP

196608:nA2vkEyBJxdhAkbGxTmN98gQKba9JmbMPfrI8:5vy+TmfzpbWJUMPfrI8

Score

10^/10

babadeda crypter loader

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

150857f47c2baeebe41028b415ba30ec.exe

Resource

win7-20231215-en

babadeda crypter loader

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

150857f47c2baeebe41028b415ba30ec.exe

Resource

win10v2004-20231222-en

babadeda crypter loader

windows10-2004-x64

11 signatures

150 seconds

Malware Config

Targets

- Target
  
  150857f47c2baeebe41028b415ba30ec
- Size
  
  6.4MB
- MD5
  
  150857f47c2baeebe41028b415ba30ec
- SHA1
  
  04c42c467ecfb1ba1be93ea8d093514581b72c92
- SHA256
  
  7d580d1416efb8a4475d4d682ca4e53b96482ef437770e66cb2ca8bcfbc075c9
- SHA512
  
  34e14180c9643c13a41c5c2aba823191cbc6b3d77c355bb0150bb93bca8d8bda40c77b0dde4171a58e4ec7c17d1b1133d9b8603b6534f921d4535b45c6cca30e
- SSDEEP
  
  196608:nA2vkEyBJxdhAkbGxTmN98gQKba9JmbMPfrI8:5vy+TmfzpbWJUMPfrI8
Score

10^/10

babadeda crypter loader
- Babadeda
  Babadeda is a crypter delivered as a legitimate installer and used to drop other malware families.
  loader crypter babadeda
- Babadeda Crypter
- Executes dropped EXE
- Loads dropped DLL
- Drops desktop.ini file(s)
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Query Registry

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

babadedacrypterloader

behavioral2

babadedacrypterloader

© 2018-2024

Terms | Privacy