dc287b1f38dfd32bdd479048022dba205674c378882867499ae216cbd251f6f5 | Triage

Sharing

General

Target

File-BeamNG.drive-v0.23.5.2-Gnarly-Repacks_268171.exe
Size

4.0MB
Sample

230914-tpmcyafg97
MD5

40e45a1b5d1493e4adbddc41248eeb0d
SHA1

9ca3c821a94bf934a7dfa62c101b673a014b1642
SHA256

dc287b1f38dfd32bdd479048022dba205674c378882867499ae216cbd251f6f5
SHA512

b9fa071713c40a3cec1c679ffba7ae3409cee46730ddb7240c11971cb5435782204bdc9b0c4eb4e2249f15130470368df043fd7a6e5d50d17abf87d386487759
SSDEEP

49152:FmfdOTMpa40Ab7JwSS9EFClzMucUJTYb6lHI5duHS3nZ561dFT/o0PmuYsdcg:qdwka4j0p9cei6sdES3XAdFGuYY1

Score

5^/10

discovery persistence

Malware Config

Targets

- Target
  
  File-BeamNG.drive-v0.23.5.2-Gnarly-Repacks_268171.exe
- Size
  
  4.0MB
- MD5
  
  40e45a1b5d1493e4adbddc41248eeb0d
- SHA1
  
  9ca3c821a94bf934a7dfa62c101b673a014b1642
- SHA256
  
  dc287b1f38dfd32bdd479048022dba205674c378882867499ae216cbd251f6f5
- SHA512
  
  b9fa071713c40a3cec1c679ffba7ae3409cee46730ddb7240c11971cb5435782204bdc9b0c4eb4e2249f15130470368df043fd7a6e5d50d17abf87d386487759
- SSDEEP
  
  49152:FmfdOTMpa40Ab7JwSS9EFClzMucUJTYb6lHI5duHS3nZ561dFT/o0PmuYsdcg:qdwka4j0p9cei6sdES3XAdFGuYY1
Score

5^/10

discovery persistence
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistence

behavioral2

discoverypersistence

behavioral3

discoverypersistence