3f4cdbcacb1bbc5e94911890f3b9a138ef1f1e7c89526cb7656ea675b947f9ba | Triage

Sharing

Copy URL Twitter E-mail

General

Target

chatgpt-discord-Win-amd64.zip
Size

6.1MB
Sample

230402-df8ltaff5y
MD5

57eaddc5c0947b013e7541e6af602e39
SHA1

9e358f8ac0829e85e665e04791361de199fe03a1
SHA256

3f4cdbcacb1bbc5e94911890f3b9a138ef1f1e7c89526cb7656ea675b947f9ba
SHA512

5c4be38663f65fac46443ef8899b28dae9cb867f927e29c1c2224e22585c7ca642b805a22de308b4bb05da2c3f026e1d45c02c5e052077c5570ce31c06750e2f
SSDEEP

196608:wYj7D4C3HlfauKmxWGWsK2Fuj4Vkq6yLx+DWhL:wi7fVfe1GvK2SqUWhL

Score

7^/10

Malware Config

Targets

- Target
  
  chatgpt-discord.exe
- Size
  
  11.2MB
- MD5
  
  00a154f68465e76d88968410fe7a6d9a
- SHA1
  
  7af269bb09457a3da32427dcc9e1b45b217fda8a
- SHA256
  
  d8e2564cff80379a1192257a02def1f6c7a2397f2a6830416c96d1f757157f19
- SHA512
  
  83da72d20022a63e96a5101297efb18750b7a16ff3e0b8b38b8e0c8e496a698c4fc478050ef5db912d755cbc43ccf37a3cc3da93eb0acf069e776adb592b99ea
- SSDEEP
  
  98304:w+6NmgVmTcba32WwEYG4e1oJgO6a2ppN9ub/4U7FVlifIECn4gvaz6Zfn6m:kmtYG7U2pAwUbUIf4Eh6
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2