79ce201dd4134cd866038cbc78f9a5758e2f3fcc672b915dd50028ac4e1d3b77 | Triage

Submit
Reports

Overview

overview

7

Static

static

1

Mechvibes.....0.exe

windows7-x64

7

Mechvibes.....0.exe

windows10-2004-x64

7

Sharing

General

Target

Mechvibes.Setup.2.3.0.exe
Size

61.7MB
Sample

230331-zmrgrsef8y
MD5

4a43aeaa5396c88362598883879ba083
SHA1

d17edb9a8d878c517923bcb9385c3c79dbae4823
SHA256

79ce201dd4134cd866038cbc78f9a5758e2f3fcc672b915dd50028ac4e1d3b77
SHA512

59a544304e1027eb1eb16284c6a58d1431720d306f25b2c39ffb406cbd9c2404878b08ce33d56463d0e5fc40b3c998d5d0db241875652c1fb071376ca721fe32
SSDEEP

1572864:1ab4n3FgfVf8VEx66sM9lqbtReXUq4ndx+55D+UVdH:1N3FceEQ6s+QReXUHdx+5xZH

Score

7^/10

discovery persistence

Static task

static1

Behavioral task

behavioral1

Sample

Mechvibes.Setup.2.3.0.exe

Resource

win7-20230220-en

discovery persistence

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

Mechvibes.Setup.2.3.0.exe

Resource

win10v2004-20230220-en

discovery persistence

windows10-2004-x64

12 signatures

150 seconds

Malware Config

Targets

- Target
  
  Mechvibes.Setup.2.3.0.exe
- Size
  
  61.7MB
- MD5
  
  4a43aeaa5396c88362598883879ba083
- SHA1
  
  d17edb9a8d878c517923bcb9385c3c79dbae4823
- SHA256
  
  79ce201dd4134cd866038cbc78f9a5758e2f3fcc672b915dd50028ac4e1d3b77
- SHA512
  
  59a544304e1027eb1eb16284c6a58d1431720d306f25b2c39ffb406cbd9c2404878b08ce33d56463d0e5fc40b3c998d5d0db241875652c1fb071376ca721fe32
- SSDEEP
  
  1572864:1ab4n3FgfVf8VEx66sM9lqbtReXUq4ndx+55D+UVdH:1N3FceEQ6s+QReXUHdx+5xZH
Score

7^/10

discovery persistence
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence

© 2018-2024

Terms | Privacy