b193d81829c58f66998cd52d441b24cf8f156d6d56428fdb30bcf2f6d2c73b62 | Triage

Resubmissions

12/06/2023, 22:26

230612-2cgkxsea34 4

12/06/2023, 22:25

230612-2b8b9aee7y 4

12/06/2023, 22:19

230612-18hbnaea28 8

12/06/2023, 22:12

230612-14lhhsea24 8

Sharing

General

Target

filmora_setup_full1081.exe
Size

1.9MB
Sample

230612-18hbnaea28
MD5

1f090660a7d27831834677266b9c6c3a
SHA1

9ba1ff14d0b1fe094486d698e7c933b1364850a9
SHA256

b193d81829c58f66998cd52d441b24cf8f156d6d56428fdb30bcf2f6d2c73b62
SHA512

56b8ed357941c874d44c7ddf218b3f50a3c905bda6fed393623afa4d9b392ecb486899c4695105ec135d67a73b72bbd173dedf58dade67445273bcd9431e8a14
SSDEEP

49152:ZiDGQapGSAT03UF3+oSSzG/fvPrvfsTiY20+NTZTpKL:ZiDGQrkkVNovPjw20+N0

Score

8^/10

Malware Config

Targets

- Target
  
  filmora_setup_full1081.exe
- Size
  
  1.9MB
- MD5
  
  1f090660a7d27831834677266b9c6c3a
- SHA1
  
  9ba1ff14d0b1fe094486d698e7c933b1364850a9
- SHA256
  
  b193d81829c58f66998cd52d441b24cf8f156d6d56428fdb30bcf2f6d2c73b62
- SHA512
  
  56b8ed357941c874d44c7ddf218b3f50a3c905bda6fed393623afa4d9b392ecb486899c4695105ec135d67a73b72bbd173dedf58dade67445273bcd9431e8a14
- SSDEEP
  
  49152:ZiDGQapGSAT03UF3+oSSzG/fvPrvfsTiY20+NTZTpKL:ZiDGQrkkVNovPjw20+N0
Score

8^/10
- Downloads MZ/PE file
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2