Overview

overview

7

Static

static

1

flstudio_w...63.exe

windows7-x64

7

flstudio_w...63.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    flstudio_win_20.7.2.1863.exe

  • Size

    921.9MB

  • Sample

    230202-v6dykaef84

  • MD5

    0ae3105f25de01b112b97939194b813f

  • SHA1

    f1248621bbcf5521d5a262497abf8ad409914bf6

  • SHA256

    68f6f136e48d99b3e2f21705b911c167210f49b96030ba05202d0245de982834

  • SHA512

    abd0e8828c29a3e7d8382356709bc4ca256b141a02c316888941f2b1493fd7c46d6153c97937971484ee9127b01a30d90d48f859107d53019dae8bd96b7e473f

  • SSDEEP

    25165824:7ekAOjXmPZRsfItOa+fnVQe11EeplDSXXYOV:7WugZPMa+PVQsZTSJ

Score
7/10
discoverypersistence

Malware Config

Targets

    • Target

      flstudio_win_20.7.2.1863.exe

    • Size

      921.9MB

    • MD5

      0ae3105f25de01b112b97939194b813f

    • SHA1

      f1248621bbcf5521d5a262497abf8ad409914bf6

    • SHA256

      68f6f136e48d99b3e2f21705b911c167210f49b96030ba05202d0245de982834

    • SHA512

      abd0e8828c29a3e7d8382356709bc4ca256b141a02c316888941f2b1493fd7c46d6153c97937971484ee9127b01a30d90d48f859107d53019dae8bd96b7e473f

    • SSDEEP

      25165824:7ekAOjXmPZRsfItOa+fnVQe11EeplDSXXYOV:7WugZPMa+PVQsZTSJ

    Score
    7/10
    discoverypersistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Registers COM server for autorun

      persistence

    • Adds Run key to start application

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops desktop.ini file(s)

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks