d52b5275d5876aa7de35a894c4dbbb3fc254ba7fde72da94ace7118792cebb2c | Triage

Submit
Reports

Overview

overview

7

Static

static

7

keygen/kg.exe

windows10-2004-x64

7

setup/Star...up.exe

windows10-2004-x64

5

Resubmissions

16-07-2023 05:08

230716-fsz7bade5s 7

16-07-2023 05:05

230716-fq1p3ade41 7

Sharing

General

Target

cxa4281a.zip
Size

2.2MB
Sample

230716-fq1p3ade41
MD5

aa506ea79d090c27ed86b479254e8d16
SHA1

3afa43d7eeb2414ccf649d072c1dbdd9820d147d
SHA256

d52b5275d5876aa7de35a894c4dbbb3fc254ba7fde72da94ace7118792cebb2c
SHA512

faee5de16b6d058503a978d4a8ffc45965b2c47d944a9c5ec2de80623961be159322707f1d1d4870a59817e356e7566181f573c8ae3189aeeb8ee7f93a58bb41
SSDEEP

49152:6UZjijll7OE2FwS9HWNN8POqjbcLM22cJCuBo/lLWg2Ij:6Eun7OE2SSsN2OqjMUuB+l5j

Score

7^/10

upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

keygen/kg.exe

Resource

win10v2004-20230703-en

windows10-2004-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

setup/StartAllBack_3.6.3_setup.exe

Resource

win10v2004-20230703-en

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  keygen/kg.exe
- Size
  
  274KB
- MD5
  
  3b4d64258593a36db824dd09394fd7bc
- SHA1
  
  52838b9dd2dfc6bde5fb26b4832c1572f838dd05
- SHA256
  
  bd281b3bf4c15e41f8b40b4259babdc7279d02eae5e3136b388c3ed02092c74e
- SHA512
  
  2df872dd784c582090df34f42f71bd1a8864f7a8ee0042b37182176c6a95e6d28f615bf4b7162f38473be0078230d2be420259894b981e1699de9802dbfc8e52
- SSDEEP
  
  6144:CAqimqS3lEL7YpAJ5I+b6DuMsfuqaeiSp5dwO1WfF5c8PoSt:zqiI2L73PbKvSiSAFF5roS
Score

7^/10

upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1
- Target
  
  setup/StartAllBack_3.6.3_setup.exe
- Size
  
  1.7MB
- MD5
  
  970b9b636f0bdca2d19ebcfd8d214a94
- SHA1
  
  d675c14b63f7f619bb05b89bb0ab3c518d11c2e0
- SHA256
  
  213c6bdf86674024dbbe5cdf3d84068b4ba9faff8ad484452deddfc149fd6fe2
- SHA512
  
  4421aa6dc4ac98c49f248e61782a30825f337c138b705873d13bab4afd7197f65f4d8d26fe0ebe28bffb9a3301acf9da21d7311d182bfdc818983ae07353fef5
- SSDEEP
  
  49152:IBLK+0xTePUMne6eYuo5VPLWxENnpYB9hJEoReZ+:IBMeeORVPaQnpQ9hG1Z+
Score

5^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy