(e.g., incident response steps, further technical analysis) Malware Analysis Report - CISA
1352dbb093a337eb8db9d0135adbe0542bb7e7163616e4f8962919becab171da BDM5-20.7z
157a0ffd18e05bfd90a4ec108e5458cbde01015e3407b3964732c9d4ceb71656 incident response steps
The malware within this archive employs several sophisticated anti-analysis and evasion techniques: BDM5-20.7z
It uses an with a hardcoded string ( hrjio2mfsdlf235d ) to process variables. The final decoded payload is typically named result.exe .