Overview

overview

7

Static

static

1

CosmoNaut-...ng.exe

windows7-x64

7

CosmoNaut-...ng.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    CosmoNaut-Setup-1.0.7-Staging.exe

  • Size

    62.7MB

  • Sample

    230615-ppyzhsgg47

  • MD5

    4408c985d48901abbc4a6a9466bae7c6

  • SHA1

    940eeca89ffdd0f9ba0b39425f65e0f9a78afcc9

  • SHA256

    a871c8e525f800cc219514c2234475aff8339c78db618371c8c7e3d832cb1eed

  • SHA512

    6c7768b798087ae7fcb4bc09b32bf4f07038efd5714a50533fa5207e1bc05cd8e361a70fe5ffa54e2a4614a6f899ab5d5e88d48ea988cb1cf9df0d5b1b4bf9e4

  • SSDEEP

    1572864:1tOHCnuynqyTdhYwbcDpgU0htfQmLcXjqCMbWm/N/wAEQFGi:1DnHswbcDkNLoNM1JIQJ

Score
7/10
discovery

Malware Config

Targets

    • Target

      CosmoNaut-Setup-1.0.7-Staging.exe

    • Size

      62.7MB

    • MD5

      4408c985d48901abbc4a6a9466bae7c6

    • SHA1

      940eeca89ffdd0f9ba0b39425f65e0f9a78afcc9

    • SHA256

      a871c8e525f800cc219514c2234475aff8339c78db618371c8c7e3d832cb1eed

    • SHA512

      6c7768b798087ae7fcb4bc09b32bf4f07038efd5714a50533fa5207e1bc05cd8e361a70fe5ffa54e2a4614a6f899ab5d5e88d48ea988cb1cf9df0d5b1b4bf9e4

    • SSDEEP

      1572864:1tOHCnuynqyTdhYwbcDpgU0htfQmLcXjqCMbWm/N/wAEQFGi:1DnHswbcDkNLoNM1JIQJ

    Score
    7/10
    discovery

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks