Overview

overview

7

Static

static

1

Setup.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Setup.bin.zip

  • Size

    9.3MB

  • Sample

    231011-2st6ysbh92

  • MD5

    aaf463acd122d0efc1cd6e961fe30a1e

  • SHA1

    3816481fa24097e702fd10b36c9f554659f9c117

  • SHA256

    f2eab04f73eae91bcd3e0ee2a08f977949a7bd8d8cead9a8b27dd72ce753b171

  • SHA512

    a80cbb11969559e96fdf106b794c588a5fe09989f6e76fb95d71eb0bbe116e593026d7507d31c4ede24f26a8c569e5428ffeff7d5943c26fc6fb48709ad641f8

  • SSDEEP

    196608:7wxCOXbr14aVi5TIxrrmcPNFEhJ+93dVea5VHnhi0QzQ7s0xA/:7wx5X14aVisrDNB93dPVHng0F7Zxi

Score
7/10

Malware Config

Targets

    • Target

      Setup.bin

    • Size

      9.5MB

    • MD5

      64c4087720ffb68f3509d85d5c1eac6c

    • SHA1

      f89f331e487730a188b5402736ca73936f6e928b

    • SHA256

      7f438c76a0f86655ba954d5690ff2c571453754e3555b4727e9a4a2406a63c58

    • SHA512

      b4839f50f05aa190848fc873a24d87702f46724617b2b3ed177f587ef53ce65c75049b357a3b5209ea7d994c102fb9313b2450da1afe112504bc0e69bf32e0d5

    • SSDEEP

      196608:5htGtT+RKTcMJ0udPWGiBaD4Wt5uZl3W8kufgobtaT+ZKKe5SesZ3Db:2TnTcMtdPWGOGx5uZRl1fdbgCZKrfqzb

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks