8ba53b5d773bc157df65fb0941c24e1edbc7c7b47e37b3f7a01751fc3b1a701a | Triage

Sharing

General

Target

ChrоmеSеtuр.exe
Size

20.3MB
Sample

230920-gnz67aed3x
MD5

a3fec32282873b302adaeef78c085aee
SHA1

df5c2d7162265c4080d88b47eb0aa2f42e398570
SHA256

8ba53b5d773bc157df65fb0941c24e1edbc7c7b47e37b3f7a01751fc3b1a701a
SHA512

31d394e6e2c48c25f0a15056504d6f3177d9f6e3eb1b7a53a239da8bd5a5dd887ed2feba79d176b43c6f82a43b33bcae4f9771697817143674c1a5e804399e85
SSDEEP

393216:lr4Nf4t1uReKjW0qka4naIarBD9yd3GB/g2:J4Nf4buRhW0qdKqrBJyd2B/X

Score

7^/10

spyware

Malware Config

Targets

- Target
  
  ChrоmеSеtuр.exe
- Size
  
  20.3MB
- MD5
  
  a3fec32282873b302adaeef78c085aee
- SHA1
  
  df5c2d7162265c4080d88b47eb0aa2f42e398570
- SHA256
  
  8ba53b5d773bc157df65fb0941c24e1edbc7c7b47e37b3f7a01751fc3b1a701a
- SHA512
  
  31d394e6e2c48c25f0a15056504d6f3177d9f6e3eb1b7a53a239da8bd5a5dd887ed2feba79d176b43c6f82a43b33bcae4f9771697817143674c1a5e804399e85
- SSDEEP
  
  393216:lr4Nf4t1uReKjW0qka4naIarBD9yd3GB/g2:J4Nf4buRhW0qdKqrBJyd2B/X
Score

7^/10

spyware
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Accesses cryptocurrency files/wallets, possible credential harvesting
  spyware
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1