fe9ef92c748a292553f5a2b93fae0154750581642ececf5671ea68013ee51066

Sharing

Copy URL

Twitter E-mail

General

Target

Setup.rar
Size

3.3MB
Sample

240202-tqjy7scddr
MD5

6567815e19bb7a380c54518ece4300cf
SHA1

041004018e076ea56e7ac17a9bcae9a510a2c47e
SHA256

fe9ef92c748a292553f5a2b93fae0154750581642ececf5671ea68013ee51066
SHA512

95d04d0543ddc09bae8a49e7fef89fa3317b83a2578bc3196e6de7544e2787c2088ad4e34d14619377b3b139ef5762803f8ecbf7f6fe6bf541dd067d6c800e79
SSDEEP

49152:TxjsxyGoCH0iM+i+bbB1RJdVjH+qIVGkD56c5QACatf3ihmLN3h3f/agiF:VjsxyGfH0X+i+nBLMVGktra3KiqNRPcF

Score

7^/10

Malware Config

Targets

- Target
  
  Setup.rar
- Size
  
  3.3MB
- MD5
  
  6567815e19bb7a380c54518ece4300cf
- SHA1
  
  041004018e076ea56e7ac17a9bcae9a510a2c47e
- SHA256
  
  fe9ef92c748a292553f5a2b93fae0154750581642ececf5671ea68013ee51066
- SHA512
  
  95d04d0543ddc09bae8a49e7fef89fa3317b83a2578bc3196e6de7544e2787c2088ad4e34d14619377b3b139ef5762803f8ecbf7f6fe6bf541dd067d6c800e79
- SSDEEP
  
  49152:TxjsxyGoCH0iM+i+bbB1RJdVjH+qIVGkD56c5QACatf3ihmLN3h3f/agiF:VjsxyGfH0X+i+nBLMVGktra3KiqNRPcF
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2
- Target
  
  Setup/Setup.exe
- Size
  
  703KB
- MD5
  
  7c072889c0da91e318c87ba695655d9f
- SHA1
  
  d5922afb184e27013d58b6e163519362b8dbc27a
- SHA256
  
  d2a42906e2fb62e23325923a4453b7a6a09884f6f7b3863ddf35f50e6ecb4098
- SHA512
  
  831895f0cddefea89b016d34bf7f40d6dbe34817b127a8aa54d5724b4595df32c785191599f8582a0904ef26955e0209f9766227083d9208c2ea694facf25675
- SSDEEP
  
  12288:FgLAetvCaem2VSn7FJF2oRhdg44dmEzHl0NxUJxzHDH08BEVnMUhDZVOA:hetqaem2En7FJF2o1QdmERzj6N
Score

3^/10
behavioral3 behavioral4
- Target
  
  Setup/auto-update.dll
- Size
  
  87KB
- MD5
  
  23c4ee1bd5c933c3166e5b6f2498f634
- SHA1
  
  ff12718656de4349f882261e753716d99fbc6702
- SHA256
  
  57f5c342ef0f803cd5a91951019d72006f509c6104097ccc8e2dbe932241b756
- SHA512
  
  65f87dd2b7d26c90c4f69688d708506347ada55cdc3ec15c4a64c5c44f2283f6bc967376f782f123bffd3efa62d7a75a59c7d65e05204ece823ec108543b2b48
- SSDEEP
  
  6:aooooooooooooooooooooooooooooooooooooWoooooooooooooooooooooooooY:n
Score

1^/10
behavioral5 behavioral6
- Target
  
  Setup/d3dcompiler_47.dll
- Size
  
  1.8MB
- MD5
  
  3e96b346b2112250cae01a8c84b71a92
- SHA1
  
  18d2a0214ca55f55cb4a1a5aff8f366a23e2abca
- SHA256
  
  71a1c1cc5848c34b169245fa73233a5f2a9632ad258c06a1ba7f19c94d663656
- SHA512
  
  1514319ecac0b08a3de09b5f4613093b1f976d34fc3d26cc7e09f844d31de9a647dddfa38bb6635bbeff68698f59bc9507916c522f66ca3527fb878a2388cc34
- SSDEEP
  
  49152:3uhjwXkKcimPVqB4faGCMhGNYYpQVTxx6k/ftO4w6FXKpODU:ny904wY4
Score

1^/10
behavioral7 behavioral8
- Target
  
  Setup/libG1LESv2.dll
- Size
  
  142KB
- MD5
  
  b5505f1a0d0b678dd1198591bc74bc3a
- SHA1
  
  4312c487599c49bc53e2d83ca34561ac3b79b729
- SHA256
  
  08b34f11661de9e838ecd8fdf2780117e6b5e83edf24f5dcfae823a7e1fbfdd1
- SHA512
  
  804ebb36d26f4362f03c31071905b8da41cd0318d10fa9e1fcab191438afc4d7f79d2f6bc6fea2dd45073929b88a3bf467f9d3cc63f703a1909cc089a291853f
- SSDEEP
  
  3072:YZ8y3Lm1TcmyZ8y3Lm1TcmyZ8y3Lm1TcmyZ8y3Lm1Tcmt:GZ/Z/Z/ZI
Score

1^/10
behavioral10 behavioral9
- Target
  
  Setup/locales/ca.pak
- Size
  
  371KB
- MD5
  
  de21c7d001b771d4d59e2acfdd67dd44
- SHA1
  
  ef5870e9cf34416edbec6aa76a6feb77b70b9acf
- SHA256
  
  78bbee9bf6c95d239418037fd4660d081ebc0f369e727e613b6b652e380e6dd0
- SHA512
  
  3276a84a4b4d90b47789a7ce6a3ae34afec187145a438fbdb7f398152b182e97ba10acda4941456ea2387c03c101bc2b1716a8950897ea3be180b3d8c073902e
- SSDEEP
  
  6144:moaCg6EDiYqdSIs3cehEYBC2l3nbh9aGHQl2SwAGwXZM0dLbpuQRBtryBocaGIlI:Hg6EO9dSIs3cehEYBC2l3nbh9aGHQl2t
Score

3^/10
behavioral11 behavioral12
- Target
  
  Setup/locales/da.pak
- Size
  
  342KB
- MD5
  
  f3a47e259c59de0aabef03e6b5a263ca
- SHA1
  
  c45bd961c8bb84331d652f4399675b365f5dfe23
- SHA256
  
  13c9583127d9d723801c946039e60f72dbbde898dd23fb9f675b9e299d0ce72a
- SHA512
  
  4249456e572403249580905f1b4b4471b6a8d84c6c71201c42adc862d4e0d33f957ae1057109e900a10a029a8dfc45257b0e0e283ad9eca21a30498a0795eff2
- SSDEEP
  
  6144:eAzv/f19wl6qKJwRXFGZO2Z5nYryGzOWi05TWwc:5H9IF85Yr5T0
Score

3^/10
behavioral13 behavioral14
- Target
  
  Setup/locales/en-GB.pak
- Size
  
  299KB
- MD5
  
  05ac84aa6987eb1f55021b6fba56d364
- SHA1
  
  58cb66bba3af0c6cc742488ccc342d33fc118660
- SHA256
  
  e1e357c853eed83fb6c4133f8f4df377a8eda4fe6f0e55395f21c5ab6e38faa8
- SHA512
  
  c615e1eb01412c5e2c0402242d442a6cf08965318d1c0d261ca5bc6df9acba5efa2c87ade20e1e4740d2239ea56d1ce4d3fc7a4c3eabe81b876ecb364b3e91b6
- SSDEEP
  
  6144:WJeP/KOb6vG8GGvDJAgdMP9ectcaAfaYEnG2J05SSvqo:1COb6ugdMrcarnGf5SSio
Score

3^/10
behavioral15 behavioral16
- Target
  
  Setup/locales/en-US.pak
- Size
  
  302KB
- MD5
  
  3fef69b20e6f9599e9c2369398e571c0
- SHA1
  
  92be2b65b62938e6426ab333c82d70d337666784
- SHA256
  
  a99bd31907bbdc12bdfbff7b9da6ddd850c273f3a6ece64ee8d1d9b6ef0c501c
- SHA512
  
  3057edfb719c07972fd230514ac5e02f88b04c72356fa4a5e5291677dcbab03297942d5ecdc62c8e58d0088aed4d6ea53806c01f0ea622942feb06584241ad2d
- SSDEEP
  
  6144:yoaiWmH9xPN6DacNMP9elahdQfaYejDJDsN5ySMZswS:taiWF+cNMbhd7jDJi5ySEswS
Score

3^/10
behavioral17 behavioral18
- Target
  
  Setup/locales/es-419.pak
- Size
  
  366KB
- MD5
  
  13c6d0a268545541f325375d431b41ae
- SHA1
  
  5f5c41348f00c5e5539d261c2b76ae6e3ec7af83
- SHA256
  
  943fa8774ade38d57349a5d27869097a782bc06bd34c40864a85ba829457d127
- SHA512
  
  09cbb2b21304ca8afa8b760b738adb5422e83550085f1aed8e8590eeef04a2b0e131e1ead6723c3e85383630c483d7720e55f71305ff4821d7822fe6d7aa4252
- SSDEEP
  
  3072:rt+uPUzEx0HrKJBjQMU0dmdv5jrqMCOyu0sdzPh7buhwwJ3Os57lLfGLFg3WSszj:rt+o+I0H6nUxv5rYQQJH5sLFg3WSsTG6
Score

3^/10
behavioral19 behavioral20
- Target
  
  Setup/locales/fa.pak
- Size
  
  535KB
- MD5
  
  c27431f2de37b9643b83e383f7eae5a8
- SHA1
  
  16d068d9738e1aa9b94658299a4eac3972520864
- SHA256
  
  bb28ad47e95aefaa2d8d7b6a7f449f9707cfadbcd4c21bad8bd8a6578108d2cd
- SHA512
  
  4ccc46dc7756ea0e60e6d278bcac1262a54ba03742fd0eb4d9f1f962486394fa56491844871dacb4cb0501c6f594334d3f23f3db82bfdfa1f938e1ae609d6600
- SSDEEP
  
  12288:aGz43DX9nuya1jfwHLwNUaGSSfStQvueKT+JwMTAKzIxRAQiHedNu3htodxWetlh:aF3luya1jfwrwNUaGSSfStQvueKT+Jw7
Score

3^/10
behavioral21 behavioral22
- Target
  
  Setup/locales/fi.pak
- Size
  
  338KB
- MD5
  
  aac0554a39bb1ae91e2ed4246e04c30e
- SHA1
  
  031785024765eda1534fd9504eccbe1b471ae618
- SHA256
  
  df8cefa4831fc2fdf817dd6d49a6373edee4f51f23cf990c690e72ce348f69bb
- SHA512
  
  a6afc9464047c75157dcb8ece086c1c5bf4dccb48d33da24e35c43110f300cfea503c4cca093f3d4bcc7a0fdcb306138da5be288ef646881b625751e40d93689
- SSDEEP
  
  6144:3pR/2jxpvwhnVgQsm3aOE/8aCEELsR5w5jSH4EJ18GWU/8nZRuX1wr2:vOnvoG8a35w5+H4EJ18GWU/o2
Score

3^/10
behavioral23 behavioral24
- Target
  
  Setup/locales/fil.pak
- Size
  
  379KB
- MD5
  
  f989a7215cac1e3fb4759e5fba9aef67
- SHA1
  
  5ecf35f160e1f8242b3bca163673e24cf6d77403
- SHA256
  
  448bc8eae353c188ffaa4c2466956598ad807f0f0aae7f12e1bc59584e1aac2d
- SHA512
  
  b872beb5b1c2702f4eae616f633318b4575f573c06a3f1f0f1e1ab83585a52caf2f3c788c0c3a0d499c381fb7f06a3ea355b8686ded2ed1e392662f2746db01f
- SSDEEP
  
  6144:Po2wvMrF/y/DQkaRqQHunLxenGkZ3+mo59gmPHkAxw78:ykeCBHudqo5KmF
Score

3^/10
behavioral25 behavioral26
- Target
  
  Setup/locales/gu.pak
- Size
  
  755KB
- MD5
  
  7b476c423ce29e61b0b21d7b6a2a56b2
- SHA1
  
  5558dcec5b2580345b0797f1f2ea41952417335a
- SHA256
  
  047da4dfadcfc6bec8f4dc7d250b1757caf31a23bcfa2ea3e1f3b1cdbe9a3995
- SHA512
  
  a494ab32e45cf74e2b7e0424b4e3740470c5c6cfac8f6cc980a681eb8c21cab76255391b6884134593dc7b1029ffd861f74b47130533232881c137c41ef92cac
- SSDEEP
  
  3072:/h/zHr2DzDNmtZITYKMaWZu/lsMhmkTd4MUz2sQm251jvHsWnIIRfAHw/g/I/B6i:/ZDizBm/Voaz5cYh+Gyj
Score

3^/10
behavioral27 behavioral28
- Target
  
  Setup/locales/he.pak
- Size
  
  468KB
- MD5
  
  f4dad4f97b5f75d6d7219d43f630c2b9
- SHA1
  
  ed8c790b3b5e3faf683aa978895f266eea5b823e
- SHA256
  
  6649a844f222cfcec01e75d3de3cb3658f1347ea3851d31b8124597b87e7b57d
- SHA512
  
  f00e7e38ec0da1c110b4142dd13b3cae8b912c16518eeb4cfd7f19a0cef2c6601ec1e4959597066703b12b7dffb44fd918c7170231c2b42e40b0d90241b85133
- SSDEEP
  
  12288:lsQOFiBr3By4L92QmYq6A560SAX4o75P5oAHM7O5p9mTfDnwPEQgo:lsbss5Bok
Score

3^/10
behavioral29 behavioral30
- Target
  
  Setup/locales/hr.pak
- Size
  
  365KB
- MD5
  
  04fdc1dac2cae614b0f566310dc83bd0
- SHA1
  
  74e460e19a5e9c8b6181fa37cb9085f93bbc6233
- SHA256
  
  bada5828fc0d80c842d1409b54e8da516ae737ca30d86658b3fad5c8ace4722e
- SHA512
  
  a07bebd16f00b0b46059a7b80454664757687a59903bc36cb837cfb55e69bf7f683157372f74ff8355ad50c3b747c9674ee942aac95a9804c39acb3841721d24
- SSDEEP
  
  3072:Rt0zZ58bkQijHuVGgYzgJ5OSFT0uPFG4rV6WI6DkYAiKbeMuVjLsGW0Yqz7pFyLI:72Z5QYuVb3P6T5D37pW
Score

3^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Checks computer location settings

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32