833462bd9e87c8033d4fd95e4ba80e2da0050efe53f39f1171a1b3e0f2e0c18e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

RF-SoundFontVST3_Setup.exe
Size

6.3MB
Sample

230419-ekkk8agb58
MD5

69b602c12b90d2c3b29884450b7c15bb
SHA1

72240865e62e80ea8a4abd3e997c47ba6ae4111d
SHA256

833462bd9e87c8033d4fd95e4ba80e2da0050efe53f39f1171a1b3e0f2e0c18e
SHA512

67b4769c4321dfd342629f8600d16b619af4ee423fe2c4460008dae1dc07a3db63c9b44ecf734a267960e96b8919528d2cf34f5c16e0b79ad2d52887c6e360ae
SSDEEP

98304:fkLZQHFyM1sIaKmstoPpFs8qOBpjaOpGOJw8OfP3nboZDNxLiFMIB7:k2HFyMe9KmYrOBpjaADC8qCpxLU7

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  RF-SoundFontVST3_Setup.exe
- Size
  
  6.3MB
- MD5
  
  69b602c12b90d2c3b29884450b7c15bb
- SHA1
  
  72240865e62e80ea8a4abd3e997c47ba6ae4111d
- SHA256
  
  833462bd9e87c8033d4fd95e4ba80e2da0050efe53f39f1171a1b3e0f2e0c18e
- SHA512
  
  67b4769c4321dfd342629f8600d16b619af4ee423fe2c4460008dae1dc07a3db63c9b44ecf734a267960e96b8919528d2cf34f5c16e0b79ad2d52887c6e360ae
- SSDEEP
  
  98304:fkLZQHFyM1sIaKmstoPpFs8qOBpjaOpGOJw8OfP3nboZDNxLiFMIB7:k2HFyMe9KmYrOBpjaADC8qCpxLU7
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2