Overview

overview

8

Static

static

1

file-rival...27.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    file-rivals.of.aether.v2.1.5.4.incl.all.dlc.zi_225927.exe

  • Size

    14.2MB

  • Sample

    230510-at71nade32

  • MD5

    24df7ad59eabbe35724e792e7a2ee529

  • SHA1

    08eb769ae922185b7746fb358249ca11bf3916b9

  • SHA256

    6fba3a266639de2e75def408f50ed3c886f9541724bf8db0f1fa276538e8c093

  • SHA512

    583bfc20533b9c1763cfe4181971bc8ccdb044564f276c89d87bd02095f9c1246668f6b688dca7ad3ed093d7780508053932f9732681a8d4a3022dc5f2ae71dd

  • SSDEEP

    393216:RSFiOb2vyWNWPcCPMKxMnxE6X7HL6xEjccfLExHuDJsv6tWKFdu9CN:RSFiOb2H7HL6Sp

Score
8/10
discoverypersistence

Malware Config

Targets

    • Target

      file-rivals.of.aether.v2.1.5.4.incl.all.dlc.zi_225927.exe

    • Size

      14.2MB

    • MD5

      24df7ad59eabbe35724e792e7a2ee529

    • SHA1

      08eb769ae922185b7746fb358249ca11bf3916b9

    • SHA256

      6fba3a266639de2e75def408f50ed3c886f9541724bf8db0f1fa276538e8c093

    • SHA512

      583bfc20533b9c1763cfe4181971bc8ccdb044564f276c89d87bd02095f9c1246668f6b688dca7ad3ed093d7780508053932f9732681a8d4a3022dc5f2ae71dd

    • SSDEEP

      393216:RSFiOb2vyWNWPcCPMKxMnxE6X7HL6xEjccfLExHuDJsv6tWKFdu9CN:RSFiOb2H7HL6Sp

    Score
    8/10
    discoverypersistence

    • Downloads MZ/PE file

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks