Analysis

  • max time kernel
    122s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240221-es
  • resource tags

    arch:x64arch:x86image:win7-20240221-eslocale:es-esos:windows7-x64systemwindows
  • submitted
    22/02/2024, 20:50

General

  • Target

    bdcam.exe

  • Size

    975KB

  • MD5

    907a27105e6792d926220de1d69f9a90

  • SHA1

    d512f68501ace290604e4ab6f45bfd4361045301

  • SHA256

    c6700c69f3430da3fe9548d116e18b312ede6746eedf24dfd20aa42b6f70e249

  • SHA512

    779d5a0f41ded1cc3b6ab9d8c04d7ce4c2f5bf4207aa56ebf1ae530ac828fd6d953c9d623e815fdaddfba00c7a9da7678cfdaebe3e23e9e8d4538cae7c276a1b

  • SSDEEP

    24576:eL0ijEO42ldDBr/meL/zp8EVggU9MTXg6gVni:eIO7J9/VggTTXY9i

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 1 IoCs
  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 5 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\bdcam.exe
    "C:\Users\Admin\AppData\Local\Temp\bdcam.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2348
    • C:\Users\Admin\AppData\Local\Temp\bdcam64.bin
      "C:\Users\Admin\AppData\Local\Temp\bdcam64.bin"
      2⤵
      • Suspicious use of SetWindowsHookEx
      PID:2236

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads