40c9b735d720eeb83c85aae8afe0cc136dd4a4ce770022a221f85164a5ff14e5 | Triage

Sharing

General

Target

Bandicam-x86.msix
Size

135.2MB
Sample

240220-x9wnwsdh7w
MD5

c085e83c7806d1240d70cba20b0745fc
SHA1

45f83b538575e138f6f510b5597c81e790832791
SHA256

40c9b735d720eeb83c85aae8afe0cc136dd4a4ce770022a221f85164a5ff14e5
SHA512

9bc2c78abeb80d9fc6565068d59498ee4ccdd3d7f0528e06de5b6e34807717f3f83941f6840cce9e3988af0ef3d9aae41dc247a1370e31b988c6e4e8f66fb000
SSDEEP

3145728:3F8lS20HHRZXsiKRnMfIcYNVZiTeoVu1uX7rAUMg47zNO0SPo8ZlU:3F8lS2ox9ontcyVZiamAuLX947xOj+

Score

8^/10

Malware Config

Targets

- Target
  
  Bandicam-x86.msix
- Size
  
  135.2MB
- MD5
  
  c085e83c7806d1240d70cba20b0745fc
- SHA1
  
  45f83b538575e138f6f510b5597c81e790832791
- SHA256
  
  40c9b735d720eeb83c85aae8afe0cc136dd4a4ce770022a221f85164a5ff14e5
- SHA512
  
  9bc2c78abeb80d9fc6565068d59498ee4ccdd3d7f0528e06de5b6e34807717f3f83941f6840cce9e3988af0ef3d9aae41dc247a1370e31b988c6e4e8f66fb000
- SSDEEP
  
  3145728:3F8lS20HHRZXsiKRnMfIcYNVZiTeoVu1uX7rAUMg47zNO0SPo8ZlU:3F8lS2ox9ontcyVZiamAuLX947xOj+
Score

8^/10
- Blocklisted process makes network request
- Loads dropped DLL
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3