General
-
Target
SpotifySetup.exe
-
Size
2.8MB
-
Sample
231012-psttzaac8x
-
MD5
da56532db7d8cb67270fc27697bb524e
-
SHA1
d127c343cc8e7484997f541aeeebec8b63fa39a0
-
SHA256
75ce00349f364e34ca9744edff81d8e7e4237b035a0bea0ab2cf3e5c29e55af9
-
SHA512
6e856cb531dc6752872c7beadf0b6fa24e2457c8d9afa4d240c12b8d297eb6263b34726d8c720458e99d6958ce9917933356bd43f165c936d1304e6c1df85377
-
SSDEEP
49152:y2My0eKmxEyFNfjLmIUlOu7QtmZWNWwG6/MhmdWWjkCIj+yNyRS0b4t4TxCejhzq:
Static task
static1
Behavioral task
behavioral1
Sample
SpotifySetup.exe
Resource
win10v2004-20230915-en
Malware Config
Targets
-
-
Target
SpotifySetup.exe
-
Size
2.8MB
-
MD5
da56532db7d8cb67270fc27697bb524e
-
SHA1
d127c343cc8e7484997f541aeeebec8b63fa39a0
-
SHA256
75ce00349f364e34ca9744edff81d8e7e4237b035a0bea0ab2cf3e5c29e55af9
-
SHA512
6e856cb531dc6752872c7beadf0b6fa24e2457c8d9afa4d240c12b8d297eb6263b34726d8c720458e99d6958ce9917933356bd43f165c936d1304e6c1df85377
-
SSDEEP
49152:y2My0eKmxEyFNfjLmIUlOu7QtmZWNWwG6/MhmdWWjkCIj+yNyRS0b4t4TxCejhzq:
Score10/10-
Downloads MZ/PE file
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-