243ebcabe490740d6a757ab65397509ecfb639337afdffcf8b5a44d88efa0633 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

windowsinstaller.exe
Size

13.1MB
Sample

231120-p2b1hsfh93
MD5

8608a5b84a36e7682bf779bcd0f61a8d
SHA1

828665caa819e34815910efe2f81d6f74ae577c2
SHA256

243ebcabe490740d6a757ab65397509ecfb639337afdffcf8b5a44d88efa0633
SHA512

a4c4b96afec88a04fd58b1273b2780e0f47c406cc0ca3781ae6e2dff1f5f60c1186b679ecf7431f480e5dab59e31ee7075cecacaa32ffc67a73f604128600d5a
SSDEEP

393216:kuFxqNc1fBCzbaxAfXvIUvn4/76kLZ98FFb8iA2Nx+3y09s9:vt1cb/IUvn4ek8FFbTNxuLs9

Score

5^/10

Malware Config

Targets

- Target
  
  windowsinstaller.exe
- Size
  
  13.1MB
- MD5
  
  8608a5b84a36e7682bf779bcd0f61a8d
- SHA1
  
  828665caa819e34815910efe2f81d6f74ae577c2
- SHA256
  
  243ebcabe490740d6a757ab65397509ecfb639337afdffcf8b5a44d88efa0633
- SHA512
  
  a4c4b96afec88a04fd58b1273b2780e0f47c406cc0ca3781ae6e2dff1f5f60c1186b679ecf7431f480e5dab59e31ee7075cecacaa32ffc67a73f604128600d5a
- SSDEEP
  
  393216:kuFxqNc1fBCzbaxAfXvIUvn4/76kLZ98FFb8iA2Nx+3y09s9:vt1cb/IUvn4ek8FFbTNxuLs9
Score

5^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2