1a70915f0169d0a92414ae58337809372ed09b75f877fc570e905abe83d50550

Sharing

Copy URL

Twitter E-mail

General

Target

Roboto.zip
Size

1.1MB
Sample

221231-ym5tqadf4y
MD5

aaf1b379cb1adc4f538ce850eb0570bd
SHA1

96c19d87b0021c6fc4d6214bd4d68529077c9254
SHA256

1a70915f0169d0a92414ae58337809372ed09b75f877fc570e905abe83d50550
SHA512

939a6690c7055fbfe0b89fb8694c46d92624725fa4b43dad986ac135cd4790b600402b0721f431af173252941e945111e939f2eff516d5c53ee99ba608ea50d9
SSDEEP

24576:cY4d3/gb1tSwQtRjiWNkYNj8lovCkmwJT:cYE/gb1kwQjxynoKuJT

Score

7^/10

Malware Config

Targets

- Target
  
  Roboto.zip
- Size
  
  1.1MB
- MD5
  
  aaf1b379cb1adc4f538ce850eb0570bd
- SHA1
  
  96c19d87b0021c6fc4d6214bd4d68529077c9254
- SHA256
  
  1a70915f0169d0a92414ae58337809372ed09b75f877fc570e905abe83d50550
- SHA512
  
  939a6690c7055fbfe0b89fb8694c46d92624725fa4b43dad986ac135cd4790b600402b0721f431af173252941e945111e939f2eff516d5c53ee99ba608ea50d9
- SSDEEP
  
  24576:cY4d3/gb1tSwQtRjiWNkYNj8lovCkmwJT:cYE/gb1kwQjxynoKuJT
Score

1^/10
behavioral1 behavioral2
- Target
  
  LICENSE.txt
- Size
  
  11KB
- MD5
  
  d273d63619c9aeaf15cdaf76422c4f87
- SHA1
  
  47b573e3824cd5e02a1a3ae99e2735b49e0256e4
- SHA256
  
  3ddf9be5c28fe27dad143a5dc76eea25222ad1dd68934a047064e56ed2fa40c5
- SHA512
  
  4cc5a12bfe984c0a50bf7943e2d70a948d520ef423677c77629707aace3a95aa378d205de929105d644680679e70ef2449479b360ad44896b75bafed66613272
- SSDEEP
  
  192:qf9qG4QSAVOSbwF1wOFXuFJyQtxmG3ep/7rlzKfHbxc+Xq0rhlkT8SHfH2:kOu9b01DY/rGBt+dc+aclkT8SH+
Score

1^/10
behavioral3 behavioral4
- Target
  
  Roboto-Black.ttf
- Size
  
  164KB
- MD5
  
  d6a6f8878adb0d8e69f9fa2e0b622924
- SHA1
  
  3f8e401d808f6ce84b542266726514ac8be73171
- SHA256
  
  5ace0d0833ab83ff18ea94e4a7745f919c458ae4eabc298218226df4275ccd4d
- SHA512
  
  7c1505b4fa1a2800c91f6e6e178ef8a75856c462f5fd781b6bc5466f14e581373b770b35e0b1d6f5662824a824e36ff046e4f1a27156a8c1dd07838721172dcb
- SSDEEP
  
  3072:1D1zjYz01Og87sw7Comqu/xccsqkobOi33XNFRS3eCk1XqmSMOoDRuQKSgPTPgSt:1D1zjYz01Yh7yqu/mcsFobOi33nGk16N
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral5 behavioral6
- Target
  
  Roboto-BlackItalic.ttf
- Size
  
  170KB
- MD5
  
  c3332e3b8feff748ecb0c6cb75d65eae
- SHA1
  
  03d6e3747d862385dbe48e8296385b9236101a62
- SHA256
  
  8b2f87fb08ff4b5d62e753c750fe3291813586501fa14dd258b1ad0bfba533ae
- SHA512
  
  4a21d4a38704bbb9ccd955a8c336d01b62cc5800e01257252babcecd707313d4af2a1ac98f5e2ac4b23f2f0c72f7b9eac0bf4826cad875a94f7c57c6154f68da
- SSDEEP
  
  3072:Ezgv09uYPUi00NM8X17n2RDLvAMMxFo78qFgYVCYw1YCBx8fPmrZL14YZd5idaVJ:Ecvwu3i007zefvAMMxFo7vFVrw1J78fA
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral7 behavioral8
- Target
  
  Roboto-Bold.ttf
- Size
  
  163KB
- MD5
  
  b8e42971dec8d49207a8c8e2b919a6ac
- SHA1
  
  62442a18a9fe9457c1afeabf683d263a691b7798
- SHA256
  
  ec685a46105296fe46c8744da4a11cf8118ba6c11271941766f7a546df6aa7c7
- SHA512
  
  3bd40ac788d44626fd640ec67ef04ab0364816b5e8c831f2077bff8805cfe6890ca29274b476f933f6e96ddaa16f4e2f3f66c616dff7cd88cdcaff7dae8ca5e5
- SSDEEP
  
  3072:VBa9dX3CyiSB1/R7O0aXjC1YHeA9bOuPUPT9mYZK9K4N09PJ4X4HXYXXXXXXLnqT:uX6XiuMPT/eK9cnfST80/
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral10 behavioral9
- Target
  
  Roboto-BoldItalic.ttf
- Size
  
  167KB
- MD5
  
  fd6e9700781c4aaae877999d09db9e09
- SHA1
  
  2f10ad9e8cab0880182705c4e0fbaeabae706e64
- SHA256
  
  61df597f73c91f238cbe88fe3c536702d120d048b79b25fa0f4f7818fd123a6f
- SHA512
  
  8c9a07c662ceae43dd999872f6bd6916cb95b58c2ae373fd0a8aa58b91ce7c436d4d17d8bb3f87d644dc4362763adab2826a3f7d0f63b555b41eca747e3ea3dd
- SSDEEP
  
  3072:JlgZjU+O14f107sBZsOX86LjoqEUZsSSSa+m+b0gWOuLr9CdqdhASD/80/:JOdjHsx5Mw+m+ogKrwdfST80/
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral11 behavioral12
- Target
  
  Roboto-Italic.ttf
- Size
  
  166KB
- MD5
  
  cebd892d1acfcc455f5e52d4104f2719
- SHA1
  
  65f3f6a7e1bd2fa6f2df35e4b07775d7f1dde4f0
- SHA256
  
  99e4a85061136e99e052929ed0d85e36384fba5c34b773139a8f64339c609943
- SHA512
  
  c807beaa344a3d66eee7fb031c27c03f4b43a24d758cb76899434a26e9dae5b902c2d661a65382c027e1ed111b7d40fabc50fc233a76b667408537857b784b72
- SSDEEP
  
  3072:Q60bJiQTD/w00tEXlVT2puMWemTFrDf/7/xnb/cUg4vq97PilfZpxak25KDuNOId:QTB/aEBaJWr3b9/cUg4vq97PCxpy80Wg
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral13 behavioral14
- Target
  
  Roboto-Light.ttf
- Size
  
  163KB
- MD5
  
  881e150ab929e26d1f812c4342c15a7c
- SHA1
  
  18788c5d630fa695f9283f6393bfa541b2031508
- SHA256
  
  c576c50642271bcdbfffed04f92dc8d6a981daf300914d0a20c8a5a5a57015c7
- SHA512
  
  af18febdf3e0d5fc8111e6335bd8cc4fc8dd944910db8a4f3ebae284e3d1064eb793a25588007e3d1cee24051e11cf3328951a3f708375856d54176a53701b49
- SSDEEP
  
  3072:BXlLgbEmk0/Dv6QKwRr4T2EUtxq2FquPte/TxDuNOIOU7og2NE/:3qXpSIE6Ey/ux0WUMxNE/
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral15 behavioral16
- Target
  
  Roboto-LightItalic.ttf
- Size
  
  169KB
- MD5
  
  5788d5ce921d7a9b4fa0eaa9bf7fec8d
- SHA1
  
  6e01f9df9449565697032b002706a94b51862bbe
- SHA256
  
  a48406226854d34fe99642a524a43b2fd26a7dbeca802d5100a8a98d20e1b73d
- SHA512
  
  34303ceac62820df18bb40c8b2c39bd7aabd61b962352fcd744f3cfcf77df3639d2b06bf31f44ecc3d1579722ac598d973649648bece568ece6e80f884b79196
- SSDEEP
  
  3072:Eslhg2mSacwEH6c96KpVDWH1/XH15O8IdcNuHWjUsM1mCUMESkPIsOp1CboIRJ95:Egm5M6mDAaqxd9pU0WUMxNE/
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral17 behavioral18
- Target
  
  Roboto-Medium.ttf
- Size
  
  164KB
- MD5
  
  68ea4734cf86bd544650aee05137d7bb
- SHA1
  
  3c6a09fcc6a454924c81af7dff94fc6d399ed79b
- SHA256
  
  9d0d55a303bfd13b79a87721f65185e93f235e2d77fe398b2dca67ac519915f5
- SHA512
  
  5d55a41b845f3a3ae9b08cee5258348dfd83dac5f0a0e48159cd85c141c614a02f8f474fa683d2bfbc451d49dd3b749820662d403b2e3fd3f16a242eaca64115
- SSDEEP
  
  3072:wqmtn5wkex8r6Qym7KCkygAKuXylCC9ptSUXl8j/6afWRCgqdhASD/80/:n25wklN7T3QtSUXz7XfST80/
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral19 behavioral20
- Target
  
  Roboto-MediumItalic.ttf
- Size
  
  169KB
- MD5
  
  c16d19c2c0fd1278390a82fc245f4923
- SHA1
  
  b3aa2d8f16d5a331fdced82f213a052b204eaca0
- SHA256
  
  d3f317c97f4003892cb969bcfce8de3dc9d67fbf96fdafa68b2e3595317b0d94
- SHA512
  
  2ba64f250996058e240ef2cc4505c42e5d8abad8f71e40564341e8645d0306fb001a387c827a9bf2a8ef0c191a2d87d71e07665ac62c5c0460a26ce02d375863
- SSDEEP
  
  3072:s7Q/lat81psQ7coxhFT5vs42tvbQlybGwGzvh4PZ8zVCmqdhASD/80/:sKIMcsUNvbkyFZWVNfST80/
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral21 behavioral22
- Target
  
  Roboto-Regular.ttf
- Size
  
  164KB
- MD5
  
  8a36205bd9b83e03af0591a004bc97f4
- SHA1
  
  56c5c0d38bde4c1f1549dda43db37b09c608aad3
- SHA256
  
  4e147ab64b9fdf6d89d01f6b8c3ca0b3cddc59d608a8e2218f9a2504b5c98e14
- SHA512
  
  e96b43b0ca3fd7775d75a702f44cd1b0dfd325e1db317f7cba84efdf572571fe7594068f9132a937251aab8bd1f68783213677d4953aca197195fbe5db1f90d7
- SSDEEP
  
  3072:5y2goL/sAQRuzzlPrvRwhRFUzMWlYfxJVBxV+aYT3qPXI0yH4yDuNOIOU7og2NE/:xOmCeu+bqPeHr0WUMxNE/
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral23 behavioral24
- Target
  
  Roboto-Thin.ttf
- Size
  
  164KB
- MD5
  
  66209ae01f484e46679622dd607fcbc5
- SHA1
  
  58c733e22bceeaf9609ce578eca92ac303c6d92f
- SHA256
  
  67248f7e8c6edb3ce7ef73b0f00a534a7f42c1116cef63ce21b2035b5e979a06
- SHA512
  
  9a3298e7bdd34b3acfcd3e435cc7c1af28e90f32c37fd03e79cb71c1744d3d099d68b23e5a21b52e5785dbc4895051c2887d06b93ac8974394d6eb648e0d0df6
- SSDEEP
  
  3072:74GbnoX/bg3chPOy8Y0akfU8ZwC31atEz1viCjp+6OeQr+jpVQRE9sOcEUuyONQS:1m+Q8wektuw6/lCwJOVqkIFwu
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral25 behavioral26
- Target
  
  Roboto-ThinItalic.ttf
- Size
  
  168KB
- MD5
  
  7bcadd0675fe47d69c2d8aaef683416f
- SHA1
  
  cc79d5a23bd0ec08b1d99f5390bf33cacc3082f4
- SHA256
  
  28ce251a99cd57d00a98225a8fcb66b60b69daf10b0947c7ec4ed503c22affef
- SHA512
  
  029bbc2bc659bdeb62a170491b43ee78c6c3d4590f1189339e7abc5706aaa25ec8277fcad46c79f3a0572aba96e11a8bdf7b1c425a8885c752b4254f11705969
- SSDEEP
  
  3072:cxPLJllUxyf3JM0SVK24NWg6+aHhQIRTkC5EmQJRDDcc4MAT4UuyONQqjognFwu:QTRF2VKy+aCLHNAT4OVqkIFwu
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral27 behavioral28

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Checks computer location settings

Checks computer location settings

Checks computer location settings

Checks computer location settings

Checks computer location settings

Checks computer location settings

Checks computer location settings

Checks computer location settings

Checks computer location settings

Checks computer location settings

Checks computer location settings

Checks computer location settings

MITRE ATT&CK Enterprise v6

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28