7bc7f9d92b64320549c2a8a64df8f67c31af5bcd43dc13bac176ec5fadddcca6 | Triage

Resubmissions

03/04/2023, 16:47

230403-vamktshf6x 7

03/04/2023, 15:10

230403-sj7k9ahb71 7

Sharing

Copy URL Twitter E-mail

General

Target

StellaFantasySetup.exe
Size

17.9MB
Sample

230403-vamktshf6x
MD5

35ab7102cfa8a347af8d30da6d84b475
SHA1

503b404cabc1f5e80870224f85a9fa191e63868b
SHA256

7bc7f9d92b64320549c2a8a64df8f67c31af5bcd43dc13bac176ec5fadddcca6
SHA512

182f2fdfa88720443cec2d2708efe247de620e5ca10c6f6bb1192086801864335614d14ee1f0aab6104317d74f82683993b8e223de174afa9e8777ed212f708c
SSDEEP

393216:TjL++LBWG9kFhAFgBzdWMOUp4pxiogXUj2o/PrTFJpDAA:7HVGAFMdGfpx6Ujzp5

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  StellaFantasySetup.exe
- Size
  
  17.9MB
- MD5
  
  35ab7102cfa8a347af8d30da6d84b475
- SHA1
  
  503b404cabc1f5e80870224f85a9fa191e63868b
- SHA256
  
  7bc7f9d92b64320549c2a8a64df8f67c31af5bcd43dc13bac176ec5fadddcca6
- SHA512
  
  182f2fdfa88720443cec2d2708efe247de620e5ca10c6f6bb1192086801864335614d14ee1f0aab6104317d74f82683993b8e223de174afa9e8777ed212f708c
- SSDEEP
  
  393216:TjL++LBWG9kFhAFgBzdWMOUp4pxiogXUj2o/PrTFJpDAA:7HVGAFMdGfpx6Ujzp5
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2