Overview

overview

8

Static

static

1

Install-Go...ta.exe

windows7-x64

8

Install-Go...ta.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Install-GooglePlayGames-Beta.exe

  • Size

    1.3MB

  • Sample

    231012-aezezaeh65

  • MD5

    db2f5550ec2dc612819ff14bfff6d257

  • SHA1

    05f92c51b46392e2b4edb96de5f946e1168f6ef6

  • SHA256

    e4904acde063f8bbc284d1622a36ac13e4b4069750f4a5b17dffaa628ca7b531

  • SHA512

    017b12ef5bf49fef913c9b02c419ad0150378e51fcc5cea691ccf9bbe4ffc288a3e4bcc5c59ce8b4a0bd40deada76cb23aef02040fdfc66726b8651881f2c6f1

  • SSDEEP

    24576:PJvK78SzsMZCRMp8nFNJ3dcj7zql5Tnoo6WOnLpymOovCce36Ft6pAlxzIBaGq:FK783MoXnFv3dcj7q5LsLp3CceMuczXr

Score
8/10
persistence

Malware Config

Targets

    • Target

      Install-GooglePlayGames-Beta.exe

    • Size

      1.3MB

    • MD5

      db2f5550ec2dc612819ff14bfff6d257

    • SHA1

      05f92c51b46392e2b4edb96de5f946e1168f6ef6

    • SHA256

      e4904acde063f8bbc284d1622a36ac13e4b4069750f4a5b17dffaa628ca7b531

    • SHA512

      017b12ef5bf49fef913c9b02c419ad0150378e51fcc5cea691ccf9bbe4ffc288a3e4bcc5c59ce8b4a0bd40deada76cb23aef02040fdfc66726b8651881f2c6f1

    • SSDEEP

      24576:PJvK78SzsMZCRMp8nFNJ3dcj7zql5Tnoo6WOnLpymOovCce36Ft6pAlxzIBaGq:FK783MoXnFv3dcj7q5LsLp3CceMuczXr

    Score
    8/10
    persistence

    • Downloads MZ/PE file

    • Sets file execution options in registry

      persistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks