General
-
Target
RazerSynapseInstaller_V1.16.0.543.exe
-
Size
7.5MB
-
Sample
240309-18fstsch3z
-
MD5
9854ec5a0b9686df796bf5b48280f0b3
-
SHA1
ccaaae25e2d3ae16745e5eb98028e40a33d1f4ae
-
SHA256
1fd8ea57ce18e2a31e265afe23f1590dafb33b27344840f45acb94595f09b26d
-
SHA512
a42ff2f9456250fb1a5962599eb79780e179f79fbb7b79cdcc13d40b638807b26dc366f79b7a0c176aa2e4767b4a6f65a555647ab4936a07e295da14845846db
-
SSDEEP
196608:xAQkFX26iZrVG5Jf83OJVC2lDQ7vGKr8g8vu5J:+QkFXDEkf83OTjl48XwJ
Malware Config
Targets
-
-
Target
RazerSynapseInstaller_V1.16.0.543.exe
-
Size
7.5MB
-
MD5
9854ec5a0b9686df796bf5b48280f0b3
-
SHA1
ccaaae25e2d3ae16745e5eb98028e40a33d1f4ae
-
SHA256
1fd8ea57ce18e2a31e265afe23f1590dafb33b27344840f45acb94595f09b26d
-
SHA512
a42ff2f9456250fb1a5962599eb79780e179f79fbb7b79cdcc13d40b638807b26dc366f79b7a0c176aa2e4767b4a6f65a555647ab4936a07e295da14845846db
-
SSDEEP
196608:xAQkFX26iZrVG5Jf83OJVC2lDQ7vGKr8g8vu5J:+QkFXDEkf83OTjl48XwJ
Score7/10-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Downloads MZ/PE file
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Drops file in System32 directory
-