Overview

overview

8

Static

static

1

RefinitivW...59.exe

windows10-2004-x64

8

Resubmissions

22/02/2024, 08:53

240222-ktcjvseh61 8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    RefinitivWorkspace-installer_1.24.159.exe

  • Size

    105.7MB

  • Sample

    240222-ktcjvseh61

  • MD5

    52c1d3061339f1854253f4869106e1f9

  • SHA1

    23d1549aae9c496cc6098abdf827aa3c9432d8eb

  • SHA256

    86741d9f1548f773d4e42e0ad0d3da8961fff0a2ae40971af938111c8565f0dc

  • SHA512

    5c8320cdac904cf5535b24e0066b48f277d1c8ff722424ccc21a39b64caa94e9e2043a72c8514a9bd865d9280781e5542e92c2b5b1863b0aab42ef9e177c658e

  • SSDEEP

    3145728:1+2JYnpRBKyRF/BDD+UMaeIohFan3nH+V:QGCttdqUneIohFiXeV

Score
8/10

Malware Config

Targets

    • Target

      RefinitivWorkspace-installer_1.24.159.exe

    • Size

      105.7MB

    • MD5

      52c1d3061339f1854253f4869106e1f9

    • SHA1

      23d1549aae9c496cc6098abdf827aa3c9432d8eb

    • SHA256

      86741d9f1548f773d4e42e0ad0d3da8961fff0a2ae40971af938111c8565f0dc

    • SHA512

      5c8320cdac904cf5535b24e0066b48f277d1c8ff722424ccc21a39b64caa94e9e2043a72c8514a9bd865d9280781e5542e92c2b5b1863b0aab42ef9e177c658e

    • SSDEEP

      3145728:1+2JYnpRBKyRF/BDD+UMaeIohFan3nH+V:QGCttdqUneIohFiXeV

    Score
    8/10

    • Blocklisted process makes network request

    • Downloads MZ/PE file

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks