792fbb40f785c5b0036351061fffdc52da4313a44df5cae2599d9ab09912e15a | Triage

Sharing

General

Target

RapeLay.exe
Size

40.0MB
Sample

231011-g8jd6shb64
MD5

7e55060259826a2e7dfee398bd4d7967
SHA1

5c63ef51411f38ecdf57dd08d17a14c783f4a6bf
SHA256

792fbb40f785c5b0036351061fffdc52da4313a44df5cae2599d9ab09912e15a
SHA512

570bdb47699f6f0a6ea6c582912339360c70a8b9b043edb2bb59a58fa1dfb5474f14f387464815c4b3e459c57b0cb2326c72a8dd701d68ecaa36b728df6fed50
SSDEEP

786432:VnH60LGTVMaIHuu7/JKq8FueSZa6UUxKe61Hqmmke+EgCjpAv0sfdlNWIan0:h6wGTmtH9JKq8FuRlUa6HqKeRuT1f3+0

Score

5^/10

Malware Config

Targets

- Target
  
  RapeLay.exe
- Size
  
  40.0MB
- MD5
  
  7e55060259826a2e7dfee398bd4d7967
- SHA1
  
  5c63ef51411f38ecdf57dd08d17a14c783f4a6bf
- SHA256
  
  792fbb40f785c5b0036351061fffdc52da4313a44df5cae2599d9ab09912e15a
- SHA512
  
  570bdb47699f6f0a6ea6c582912339360c70a8b9b043edb2bb59a58fa1dfb5474f14f387464815c4b3e459c57b0cb2326c72a8dd701d68ecaa36b728df6fed50
- SSDEEP
  
  786432:VnH60LGTVMaIHuu7/JKq8FueSZa6UUxKe61Hqmmke+EgCjpAv0sfdlNWIan0:h6wGTmtH9JKq8FuRlUa6HqKeRuT1f3+0
Score

5^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2