bdb06b3dedef202ca3a3e564a1c789d67c00dce0b0ad96e1f8a0e3a2ee7eaf0e | Triage

Submit
Reports

Overview

overview

Static

static

bdb06b3ded...0e.exe

windows7-x64

9

bdb06b3ded...0e.exe

windows10-2004-x64

9

Sharing

General

Target

bdb06b3dedef202ca3a3e564a1c789d67c00dce0b0ad96e1f8a0e3a2ee7eaf0e
Size

75KB
Sample

240528-c29wbscg59
MD5

ec17f94001ffb40d9d672417bc943731
SHA1

1f77f452e179bead89f44732647e6661bbfaa8c0
SHA256

bdb06b3dedef202ca3a3e564a1c789d67c00dce0b0ad96e1f8a0e3a2ee7eaf0e
SHA512

4f93b4b60be3f9970fd453c3f54a1233b22c2c566ffcf89d395b828b6d2ade393af9d39d0829a7e37ecd2d81fc86ecef4b10241f406c1b7cfd0752e7086a870e
SSDEEP

384:+41DuuOFZyUVpULCgDb2prxVTn24X/m7Q6Al6z+yXpC:fDcZyUpULCgo24T96ayX0

Score

10^/10

evasion

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

bdb06b3dedef202ca3a3e564a1c789d67c00dce0b0ad96e1f8a0e3a2ee7eaf0e.exe

Resource

win7-20231129-en

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

bdb06b3dedef202ca3a3e564a1c789d67c00dce0b0ad96e1f8a0e3a2ee7eaf0e.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  bdb06b3dedef202ca3a3e564a1c789d67c00dce0b0ad96e1f8a0e3a2ee7eaf0e
- Size
  
  75KB
- MD5
  
  ec17f94001ffb40d9d672417bc943731
- SHA1
  
  1f77f452e179bead89f44732647e6661bbfaa8c0
- SHA256
  
  bdb06b3dedef202ca3a3e564a1c789d67c00dce0b0ad96e1f8a0e3a2ee7eaf0e
- SHA512
  
  4f93b4b60be3f9970fd453c3f54a1233b22c2c566ffcf89d395b828b6d2ade393af9d39d0829a7e37ecd2d81fc86ecef4b10241f406c1b7cfd0752e7086a870e
- SSDEEP
  
  384:+41DuuOFZyUVpULCgDb2prxVTn24X/m7Q6Al6z+yXpC:fDcZyUpULCgo24T96ayX0
Score

9^/10

evasion
- Detects Windows executables referencing non-Windows User-Agents
- Sets file to hidden
  Modifies file attributes to stop it showing in Explorer etc.
  evasion
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy