Overview

overview

7

Static

static

1

VisualStudioSetup.exe

windows7-x64

7

VisualStudioSetup.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    VisualStudioSetup.exe

  • Size

    3.5MB

  • Sample

    230525-rffgxsbc4v

  • MD5

    f27ca402060ab26f140c8454e89a24f9

  • SHA1

    cea986120a74ce817e4ae3443212fdc1a5f5c1bc

  • SHA256

    0a8aa5c8c6f1c03c6adb0bc418cd18580ec949b7c43b2b60653544cc792f70ba

  • SHA512

    bb56e1fdd3fc42ae54de2af9c106b4a2136df827d76a0d4c55d8b4b78dcbdc04868d0bbfa453c3cd2e4de80bf4564a865ac57ee0d0a59d6b629fefa6833426f6

  • SSDEEP

    98304:QLGUyveRHb3kKP9TJIKPWoz3BhsTfv6xEftUS7g3tEa:3vKPkkp3BWfv6xeNgOa

Score
7/10

Malware Config

Targets

    • Target

      VisualStudioSetup.exe

    • Size

      3.5MB

    • MD5

      f27ca402060ab26f140c8454e89a24f9

    • SHA1

      cea986120a74ce817e4ae3443212fdc1a5f5c1bc

    • SHA256

      0a8aa5c8c6f1c03c6adb0bc418cd18580ec949b7c43b2b60653544cc792f70ba

    • SHA512

      bb56e1fdd3fc42ae54de2af9c106b4a2136df827d76a0d4c55d8b4b78dcbdc04868d0bbfa453c3cd2e4de80bf4564a865ac57ee0d0a59d6b629fefa6833426f6

    • SSDEEP

      98304:QLGUyveRHb3kKP9TJIKPWoz3BhsTfv6xEftUS7g3tEa:3vKPkkp3BWfv6xeNgOa

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks