Overview

overview

8

Static

static

1

Novaline I...er.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Novaline Installer.exe

  • Size

    238KB

  • Sample

    230401-jcw2hagf98

  • MD5

    05e1d3e1704c04b11dc4e93a66f54df7

  • SHA1

    6f0ba872fbd3c6507ad6d39551f82879f83d24b5

  • SHA256

    eaf8da21629dad9d373098560b6b1ef98956d5195e76c88e2dab865ac8c833eb

  • SHA512

    e6c8988864ab4bb18e8ef53f0eb17252cbbe72a9eb11c8dafef7daa7c5554038fc9c1a8dc1c1ec1ddb5cb0f008525b5ad50e44dd5268381b51c1758aa25e36e2

  • SSDEEP

    6144:Csj7Nyml7WymEibVmhrJVwVQoZvr+nYFjI0/cA:T7cm0pEibkCljI0j

Score
8/10

Malware Config

Targets

    • Target

      Novaline Installer.exe

    • Size

      238KB

    • MD5

      05e1d3e1704c04b11dc4e93a66f54df7

    • SHA1

      6f0ba872fbd3c6507ad6d39551f82879f83d24b5

    • SHA256

      eaf8da21629dad9d373098560b6b1ef98956d5195e76c88e2dab865ac8c833eb

    • SHA512

      e6c8988864ab4bb18e8ef53f0eb17252cbbe72a9eb11c8dafef7daa7c5554038fc9c1a8dc1c1ec1ddb5cb0f008525b5ad50e44dd5268381b51c1758aa25e36e2

    • SSDEEP

      6144:Csj7Nyml7WymEibVmhrJVwVQoZvr+nYFjI0/cA:T7cm0pEibkCljI0j

    Score
    8/10

    • Downloads MZ/PE file

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks