502d8b2125b838d4a3c24529cdbcf3988715f63b9b828e91740a13a808602837 | Triage

Sharing

General

Target

SketchBook_8.7.1.0_Win64.exe
Size

87.4MB
Sample

231011-lwvnwshc24
MD5

9e0b4836354cf1c17f44f90245b8f8bb
SHA1

df00cef8ba687fc383870329230f5698d302727b
SHA256

502d8b2125b838d4a3c24529cdbcf3988715f63b9b828e91740a13a808602837
SHA512

14282760ad38fedf0c206c2aa41dd9c30be781525913054f41e59e270513b68a3b9dff03a25cb563884295ed5601e82efdabfa2feb53f948f070ec315db576a8
SSDEEP

1572864:ZQqX/yum0g7kApqrrc2iXWq8RQZaphQkYtkubfBrxD4W5jkCxIhk+l/Mbe:ZHKuTg4AYrQ2imt+yhQkFspVq9lx

Score

5^/10

Malware Config

Targets

- Target
  
  SketchBook_8.7.1.0_Win64.exe
- Size
  
  87.4MB
- MD5
  
  9e0b4836354cf1c17f44f90245b8f8bb
- SHA1
  
  df00cef8ba687fc383870329230f5698d302727b
- SHA256
  
  502d8b2125b838d4a3c24529cdbcf3988715f63b9b828e91740a13a808602837
- SHA512
  
  14282760ad38fedf0c206c2aa41dd9c30be781525913054f41e59e270513b68a3b9dff03a25cb563884295ed5601e82efdabfa2feb53f948f070ec315db576a8
- SSDEEP
  
  1572864:ZQqX/yum0g7kApqrrc2iXWq8RQZaphQkYtkubfBrxD4W5jkCxIhk+l/Mbe:ZHKuTg4AYrQ2imt+yhQkFspVq9lx
Score

5^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2