838c5689afd026b4ae76bbde03ac78ce6ddc3ae2f871c4d402ab3a3cfc3aeb29 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

BlueStacksInstaller_5.11.100.2102_native_c89ed274001e664253cf15b145d41f75_MzsxNSwwOzUsMTsxNSw0OzE1.exe
Size

892KB
Sample

230531-tq2t1sgd9v
MD5

a59e7e95e7089ec3cd8a1827c4e1fca9
SHA1

5731941a8dad02ed7a3c8cd30494f393112cd137
SHA256

838c5689afd026b4ae76bbde03ac78ce6ddc3ae2f871c4d402ab3a3cfc3aeb29
SHA512

77622c912bb195d3c7c02cb26151e1574e0a8e6b9ccee223130e08d1e85e366d51ab590b227b0a49bc1daf9c9f2344de880dbbee00103cfe43a0d7de8cec847e
SSDEEP

12288:JivtCXQd0gjKX7zuqGKGFGPDy1xSroy4VPwom6SLvvnEh5DFO+c:JivtCXWeGKGFGCVDmJW5Y+c

Score

5^/10

Malware Config

Targets

- Target
  
  BlueStacksInstaller_5.11.100.2102_native_c89ed274001e664253cf15b145d41f75_MzsxNSwwOzUsMTsxNSw0OzE1.exe
- Size
  
  892KB
- MD5
  
  a59e7e95e7089ec3cd8a1827c4e1fca9
- SHA1
  
  5731941a8dad02ed7a3c8cd30494f393112cd137
- SHA256
  
  838c5689afd026b4ae76bbde03ac78ce6ddc3ae2f871c4d402ab3a3cfc3aeb29
- SHA512
  
  77622c912bb195d3c7c02cb26151e1574e0a8e6b9ccee223130e08d1e85e366d51ab590b227b0a49bc1daf9c9f2344de880dbbee00103cfe43a0d7de8cec847e
- SSDEEP
  
  12288:JivtCXQd0gjKX7zuqGKGFGPDy1xSroy4VPwom6SLvvnEh5DFO+c:JivtCXWeGKGFGCVDmJW5Y+c
Score

5^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2