Overview

overview

7

Static

static

1

osu!install.exe

windows7-x64

7

osu!install.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    osu!install.exe

  • Size

    4.3MB

  • Sample

    230319-xghassbg6s

  • MD5

    321cf9cb89893c3f78f49c0e19718d08

  • SHA1

    59228593ccbe311dba685af04eb961c87acff981

  • SHA256

    f0b2a03e625517cab9f760e2b6b8ff56ad5aacd1249becb2872bc22fa8817426

  • SHA512

    a25562da867ccb48df6ba42b91a93f8190d77dfb1ec18637afface0cd3dfd6427a2df7a2b7c64157079a619d173d8726b0ae3b8e65d08eb08bdf0d85a438ef44

  • SSDEEP

    49152:kSicrIcF+DhSfDG6zsIGzUwES6pcAsf+hZtXvA+xrQRLYSDnwxRxpDOhB:kh9Dh56w4wES62R0xRxpDOhB

Score
7/10

Malware Config

Targets

    • Target

      osu!install.exe

    • Size

      4.3MB

    • MD5

      321cf9cb89893c3f78f49c0e19718d08

    • SHA1

      59228593ccbe311dba685af04eb961c87acff981

    • SHA256

      f0b2a03e625517cab9f760e2b6b8ff56ad5aacd1249becb2872bc22fa8817426

    • SHA512

      a25562da867ccb48df6ba42b91a93f8190d77dfb1ec18637afface0cd3dfd6427a2df7a2b7c64157079a619d173d8726b0ae3b8e65d08eb08bdf0d85a438ef44

    • SSDEEP

      49152:kSicrIcF+DhSfDG6zsIGzUwES6pcAsf+hZtXvA+xrQRLYSDnwxRxpDOhB:kh9Dh56w4wES62R0xRxpDOhB

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops desktop.ini file(s)

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks