Overview

overview

8

Static

static

FapSetup.exe

windows7-x64

8

FapSetup.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    FapSetup.exe

  • Size

    4.4MB

  • Sample

    221002-jv3l1agadl

  • MD5

    f65b6b547a52daa504af605b510110d2

  • SHA1

    045314eee3c3b3313aeff78a567d54949b0ca9bc

  • SHA256

    9ccecfbe4c185f698ac0120f7ff3d6505e3379a63c5ce0a132bf51ba1d0ec7a8

  • SHA512

    1f372ae3921b6bf43975b0d4bb723cfd0eac61b89d408e2e4f342f0497e46c25d7db484569cb6f9d16b4d6f604a72e250f601233e5d27810694b9255de61d557

  • SSDEEP

    49152:DfyBGt/d9B5SjodQnuoYT6GdQPVolWTaQebBRhiIo/pvUIJBFF3B3GgEK6wUugqZ:DaBuOJdulWTEb4t5JBPFGgEK6wngu

Score
8/10
discoveryupx

Malware Config

Targets

    • Target

      FapSetup.exe

    • Size

      4.4MB

    • MD5

      f65b6b547a52daa504af605b510110d2

    • SHA1

      045314eee3c3b3313aeff78a567d54949b0ca9bc

    • SHA256

      9ccecfbe4c185f698ac0120f7ff3d6505e3379a63c5ce0a132bf51ba1d0ec7a8

    • SHA512

      1f372ae3921b6bf43975b0d4bb723cfd0eac61b89d408e2e4f342f0497e46c25d7db484569cb6f9d16b4d6f604a72e250f601233e5d27810694b9255de61d557

    • SSDEEP

      49152:DfyBGt/d9B5SjodQnuoYT6GdQPVolWTaQebBRhiIo/pvUIJBFF3B3GgEK6wUugqZ:DaBuOJdulWTEb4t5JBPFGgEK6wngu

    Score
    8/10
    discoveryupx

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks