8ccd3b651265fa218b42e65bf1f0b40e0a8a0474e528ffc87e57901b11b06951 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

SketchUp Pro 2023 23.1.329 (x64) Multilingual.zip
Size

963.2MB
Sample

240220-ttmt9sbg98
MD5

1f167b33b8e8f7d19e38c1d0073198df
SHA1

7b00216fd3772ba5c2dd452b6f1f2ee7f86a22f6
SHA256

8ccd3b651265fa218b42e65bf1f0b40e0a8a0474e528ffc87e57901b11b06951
SHA512

91e58529c3d19da742fcd3e33c77c474c68628218dfdcc7bd6f4148613c74361f2d0838f3506dceae1db992a35f53d5e4300e03c076e4f9117fd873b7e47e3be
SSDEEP

12582912:aKoKCuDYV6+WCtQ0BmY68hPOuonr0ejkCEPK/K0oAZ1omt0rI8cBaVEZ34lbhHSh:avxu8lWYnU/r0ejkKSn60r4B4CUFyIiX

Score

7^/10

discovery upx

Malware Config

Targets

- Target
  
  File_ID.diz
- Size
  
  2KB
- MD5
  
  aea3cbb7b053c652e39edae31d4cf20f
- SHA1
  
  1c6ca4b07b928edfe0c0b0556c5d63698825ebbd
- SHA256
  
  5417698752b16547c05d9d7a48a1184bb90b3e3625064ed80b1317b4873d4cad
- SHA512
  
  6552e56718393650874c91fceab403965d6d8144e2e80a0e4daf737ec7ce938fbe250b8b522c0b28022f269ad89e67ccad0dad70d3687c0c50ec7abce4ca4bc7
Score

3^/10
behavioral1 behavioral2
- Target
  
  Patch.exe
- Size
  
  2.2MB
- MD5
  
  2e97802dd27ecaedfd7b576afe9267cf
- SHA1
  
  1d4ddc971dc5ba6201b414d86e37b99523b0d85c
- SHA256
  
  220c8084bbed37f54fbba4c5d50d8ceeb3099bac0ef4041f56ab725678213abc
- SHA512
  
  0573bc870bdc7624ad76ad290988c82f511e6bfdf7e3805758b83c89b30da784bc83e224ca54210f21722d029d283d09fb918a387b92f6b0b45bb1c24e81f869
- SSDEEP
  
  49152:wIhpWDpUfZEOW6T9kxql+/XuGmvh1/1/485:wIhpxfuvI9Wq2erfq85
Score

7^/10

upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral3 behavioral4
- Target
  
  Team TC.nfo
- Size
  
  19KB
- MD5
  
  17f3e351c67f0640f3fc57490cd760bc
- SHA1
  
  25d9336c49db5a1794ae53581c35f01a7dac202a
- SHA256
  
  6de5b73ee11a15afabc512b94414dc7a7a94cc38f0462caca8f0316a568c3472
- SHA512
  
  4dbb378939bc62aa717b78de7dbc7fe04f7d641efec44b01eeb35891d5fd9d0feaa7c60c79b85508bd01760b0967f4fb23540173997ec49ec3ce45e67e843bd0
- SSDEEP
  
  192:i5+PuW4n4X43rR+LMbOFmMd+zHe9jR1F22FrzxhV8pu30:i5+JF2uVHLk
Score

1^/10
behavioral5 behavioral6
- Target
  
  readme.txt
- Size
  
  1KB
- MD5
  
  f4fd9b7ffe622bf26502daef55ccb990
- SHA1
  
  196e0be8acbe827ef62d00ca3fd40edf65a40640
- SHA256
  
  885b751b622a191e00c062f92a51a848125759fc1cb395c7eaa5577c0933fcdc
- SHA512
  
  b8fa4e1c9bd42d3f6331b416d335e69bfe390ae6f0f2fb8d53d94b6530fdc2e1b1d96708a82f5f563443bf6327be4b8e8c872b757acb04be1f1d96308be0e75d
Score

1^/10
behavioral7 behavioral8
- Target
  
  SketchUp Pro 2023 23.1.329 (x64) Multilingual/SketchUpStudioFull-2023-1-329-111.exe
- Size
  
  963.2MB
- MD5
  
  ed4c5aded2861452830abce4e586092b
- SHA1
  
  4c9bf236ad322d54ff2b78ce4070be55af52dbfa
- SHA256
  
  dfc37e30ed058a6e8d4f0d442a3da4298e309aedca4cdb267dc321b6b0d2faf4
- SHA512
  
  ddcb0ebf7ae453103a9ba6c1f072de8501d6a50c2a2ef4bff4b0ed627af1cea7098b9979e2944c221d23ecd48d9e6b71d39da51648fe739f507c93e6b9bcddeb
- SSDEEP
  
  25165824:bLEBIQ3D2w4pxWqWu84412NOkC7SOb3PC9jbvk:bqdC7aqj54HkVksX8
Score

5^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral10 behavioral9

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10