General
-
Target
NovaInstaller.exe
-
Size
152.1MB
-
Sample
240222-wq7flsde5w
-
MD5
01586514c91b035342b92789601710b7
-
SHA1
7497f2ab937b123dafbd8769b9f62207e32063c1
-
SHA256
b8b96d300bf7ac2d39d20bfcfe77ad3dde7214323b503850b8d131266ba68573
-
SHA512
d2fedfa7451ff5a14287ba95ff1718949f1dc71226538cf1978009920f9384cf7c0dc0f5c2ad79cf5abaf6faa12ec95f0f987c223c8b735cf1097323ababb819
-
SSDEEP
786432:85FEeqL+07t0WN3KPqiVUTyqjg+NnRUTEKsKgqTtLwSTRpf4P1wT1ixZrs36cHSl:8I7LJ2TVUiKStTAxZrsqc4z
Static task
static1
Behavioral task
behavioral1
Sample
NovaInstaller.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
NovaInstaller.exe
Resource
win10v2004-20240221-en
Malware Config
Targets
-
-
Target
NovaInstaller.exe
-
Size
152.1MB
-
MD5
01586514c91b035342b92789601710b7
-
SHA1
7497f2ab937b123dafbd8769b9f62207e32063c1
-
SHA256
b8b96d300bf7ac2d39d20bfcfe77ad3dde7214323b503850b8d131266ba68573
-
SHA512
d2fedfa7451ff5a14287ba95ff1718949f1dc71226538cf1978009920f9384cf7c0dc0f5c2ad79cf5abaf6faa12ec95f0f987c223c8b735cf1097323ababb819
-
SSDEEP
786432:85FEeqL+07t0WN3KPqiVUTyqjg+NnRUTEKsKgqTtLwSTRpf4P1wT1ixZrs36cHSl:8I7LJ2TVUiKStTAxZrsqc4z
Score8/10-
Downloads MZ/PE file
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Modify Registry
2Subvert Trust Controls
1Install Root Certificate
1