Overview

overview

8

Static

static

1

BlueStacks...E1.exe

windows7-x64

4

BlueStacks...E1.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    BlueStacksInstaller_5.13.0.1075_native_3bfa08e0441173a8522e8228f8631535_MzsxNSwwOzUsMTsxNSw0OzE1.exe

  • Size

    899KB

  • Sample

    230831-e1zebace71

  • MD5

    aec913a97e40ebe42695e5dca2e52d43

  • SHA1

    e2cbd829fa8d5f8ae6652b1594d7125ba910a72b

  • SHA256

    1abb0ea2f56ac08bc5e78449e9526f9ed0b3fba021ded9946ddbf9ddc82ba2d7

  • SHA512

    ac71ea6e4209f299e41b8d2d169108b2bd38f70156b0e78da7e8aa107c3953edb9d925f1c165f828b3e3f08059a50917316240aa940c1673e8e55ac75a7db09a

  • SSDEEP

    12288:mivtCXQd0gjKX7zuqGKEFGPDy1xrqNFpMUF/QIwE3v7+DNOcAOYi7rhWvinZ2Hg:mivtCXWeGKEFGXFmUFRzLDCWqEg

Score
8/10
discoveryevasion

Malware Config

Targets

    • Target

      BlueStacksInstaller_5.13.0.1075_native_3bfa08e0441173a8522e8228f8631535_MzsxNSwwOzUsMTsxNSw0OzE1.exe

    • Size

      899KB

    • MD5

      aec913a97e40ebe42695e5dca2e52d43

    • SHA1

      e2cbd829fa8d5f8ae6652b1594d7125ba910a72b

    • SHA256

      1abb0ea2f56ac08bc5e78449e9526f9ed0b3fba021ded9946ddbf9ddc82ba2d7

    • SHA512

      ac71ea6e4209f299e41b8d2d169108b2bd38f70156b0e78da7e8aa107c3953edb9d925f1c165f828b3e3f08059a50917316240aa940c1673e8e55ac75a7db09a

    • SSDEEP

      12288:mivtCXQd0gjKX7zuqGKEFGPDy1xrqNFpMUF/QIwE3v7+DNOcAOYi7rhWvinZ2Hg:mivtCXWeGKEFGXFmUFRzLDCWqEg

    Score
    8/10
    discoveryevasion

    • Downloads MZ/PE file

    • Modifies Windows Firewall

      evasion

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks