Overview

overview

10

Static

static

1

focusky_v3...up.exe

windows10-1703-x64

10

Resubmissions

18/09/2023, 11:49

230918-ny346abd76 10

18/09/2023, 11:41

230918-nthbwsbd63 7

18/09/2023, 11:19

230918-ne1vpagh5z 7

Sharing

Copy URL Twitter E-mail

General

  • Target

    focusky_v3.7.7_win_setup.exe

  • Size

    273.6MB

  • Sample

    230918-ny346abd76

  • MD5

    dbc33a1d1911b5411d6d307c761c9136

  • SHA1

    89617f51c74dd58970b5f44d47d6af5686927b71

  • SHA256

    24f381a391bdd9b906a0da092b6fe82be0ba60f9ace8dee7ae05744f34dbc2fa

  • SHA512

    be487fe28ef8a069a90a7709df7febdadf6d999180044cf854e605cb4bf709f8881a3a8799bd5a7f765b647606f676348184bd9fcbfb1972c6e79cc105d42b62

  • SSDEEP

    6291456:fP0zjBzsesRzTVpW7a2CO0pje5fac08KsDSlxCLv8D8SZn4I6P/79+n:3mjBOzTVo7YHegc73qTZ2P/6

Score
10/10
discoveryphishingupx

Malware Config

Targets

    • Target

      focusky_v3.7.7_win_setup.exe

    • Size

      273.6MB

    • MD5

      dbc33a1d1911b5411d6d307c761c9136

    • SHA1

      89617f51c74dd58970b5f44d47d6af5686927b71

    • SHA256

      24f381a391bdd9b906a0da092b6fe82be0ba60f9ace8dee7ae05744f34dbc2fa

    • SHA512

      be487fe28ef8a069a90a7709df7febdadf6d999180044cf854e605cb4bf709f8881a3a8799bd5a7f765b647606f676348184bd9fcbfb1972c6e79cc105d42b62

    • SSDEEP

      6291456:fP0zjBzsesRzTVpW7a2CO0pje5fac08KsDSlxCLv8D8SZn4I6P/79+n:3mjBOzTVo7YHegc73qTZ2P/6

    Score
    10/10
    discoveryphishingupx

    • Detected phishing page

      phishing

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1

MITRE ATT&CK Enterprise v15

Tasks