Overview

overview

7

Static

static

3

StartSetup_20221.exe

windows7-x64

7

StartSetup_20221.exe

windows10-2004-x64

7

Resubmissions

21/09/2023, 02:04

230921-chcfqaeb64 7

Sharing

Copy URL Twitter E-mail

General

  • Target

    Inkling-Heroes-vs-Tentacle-v155-Game-By-Squidr_229027.zip

  • Size

    17.0MB

  • Sample

    230921-chcfqaeb64

  • MD5

    f3b6647f6ce878499acc976dcb5043e8

  • SHA1

    45e70c0bc037da24090442d463163fcc6996b9f4

  • SHA256

    dc37145504b25e249b8884c9cb891e64ff016891c531853934180de8a0898d67

  • SHA512

    f12a880d8ef047b4f302a5cac0234619d44cf1258d06511908cd75263ee3c2af14f10a92cf967c5a5e4b27470d921f2efe0ef244f69ac27fff26ea5b3756e2ae

  • SSDEEP

    393216:8M2o0c/DaAq2NK7/ECQsxhnmVdBbMB3oq1oa9V5AN3rI:hh/DajECFhnmVwBpomVu3s

Score
7/10
discoverypersistence

Malware Config

Targets

    • Target

      StartSetup_20221.exe

    • Size

      19.1MB

    • MD5

      f2961b1660ff367877f7a9e384822192

    • SHA1

      d7e4649d7af24f13a92956a91003248ca65553e8

    • SHA256

      b2910861b30c9a0de23781cc13842dceb2e41062b5d820be40683c4793488404

    • SHA512

      48a943764494241b09aecea3858f30cb66f08efc385261658a03481b44325ec601957b1ba068ee1a6ee73ec443ec70da9e46bc0e43e436f7b5b6d94169d9d99f

    • SSDEEP

      393216:bzmij9QceCzWNp+2+WRvj4ND9PWLlg0xoo9BVatZn4:Hmij9Qh+21vj4N8LFoqBEZ4

    Score
    7/10
    discoverypersistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Registers COM server for autorun

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks