21f2687ededb1434fbe85fbf741e99aa833caf63afb442b183a46a2b15032459 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

iLikeFeet.rar
Size

803KB
Sample

230615-j5j8eafb85
MD5

440bcd11480906d426c383367fe622a4
SHA1

12bdf2004201e3b68f76d1fdb421424ac17a821f
SHA256

21f2687ededb1434fbe85fbf741e99aa833caf63afb442b183a46a2b15032459
SHA512

8de93129afd98b55c593123db9767549d30d1a247826a146056de1384eac1d48f0b82cf23a716a02703fff24ae71bbcc187be77316c8ab49cfdb6878273a9fab
SSDEEP

12288:npX7XK89zJy+uOp8F/3HHxr7iTfwXytBaT3KbrQmNf58R8QdYO8gHD3hN:pXG8Ty/XHR7+Ve3KHgRuO8gj3hN

Score

7^/10

Malware Config

Targets

- Target
  
  iLikeFeet/iLikeFeet 2023.exe
- Size
  
  365KB
- MD5
  
  649da8d25d6837624be461fc3aec7ed0
- SHA1
  
  f7522d4be3db95c1999589360490014eaabc4c24
- SHA256
  
  e8d1e2886dbc8948150cabb2a673bd74b5c8e6d3d8eb5e4ebaa3a4fe7894a9b0
- SHA512
  
  d227312ea3756d2a87c9fa2d54f05fb16a54f1c0dc9085afb4bd25151e96d96bed420f2d1a68632aa67b53b721eb7ba4dfd16aadd57a37000384fccc37cb95be
- SSDEEP
  
  6144:KgZiAEAO0sByNsAal3gVAWgS7/OhwjuweqAMIexI7B/qaXeV:KgZXEAO/BUdG3gVdt7Krw3AjexIV/qyi
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2