e724ecee7dad100d9881d548f363753b95683379d422f9afd2f99298fdb19485 | Triage

Sharing

General

Target

Bin_Weevils_Rewritten_Setup_1.0.3.exe
Size

73.0MB
Sample

231011-zst5vada5s
MD5

c93453843bf69951d5ae8adead594e44
SHA1

6fff42ec9ff6683518784b776ab3b3b6161322b3
SHA256

e724ecee7dad100d9881d548f363753b95683379d422f9afd2f99298fdb19485
SHA512

7bfa9f35f477521429308853257aa8407e51e983520b1c45e9cb4316cafbbc4e3fdc0573af6216dec7b38da8629f4b9af2aab1b47a3ce1369fcf8beb8e1d8554
SSDEEP

1572864:iGb4n3FWdADZl+z0tnt6vtnvmJC8HL4+s8Jc38i7Pw3mgaR4NGzzzL:ip3FWdKZEgtM1nwBs80lwmgi/bL

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  Bin_Weevils_Rewritten_Setup_1.0.3.exe
- Size
  
  73.0MB
- MD5
  
  c93453843bf69951d5ae8adead594e44
- SHA1
  
  6fff42ec9ff6683518784b776ab3b3b6161322b3
- SHA256
  
  e724ecee7dad100d9881d548f363753b95683379d422f9afd2f99298fdb19485
- SHA512
  
  7bfa9f35f477521429308853257aa8407e51e983520b1c45e9cb4316cafbbc4e3fdc0573af6216dec7b38da8629f4b9af2aab1b47a3ce1369fcf8beb8e1d8554
- SSDEEP
  
  1572864:iGb4n3FWdADZl+z0tnt6vtnvmJC8HL4+s8Jc38i7Pw3mgaR4NGzzzL:ip3FWdKZEgtM1nwBs80lwmgi/bL
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3