409d279f1a90ce4da747111e334f34db1704417392d782c83b87402eca9e0634 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

BlueStacks10Installer_10.30.0.1008_native_5d51f12ca73fd38884171981ccb4ba9d_MDs1LDM7MTUsMTsxNSw0OzE1_RlIgTGVnZW5kcw==.exe
Size

910KB
Sample

240316-cmr2zahd91
MD5

45f1542e8690baf755fb2733195bc21f
SHA1

25ec98d75b2b5bf218a413133b6766e5804d34fe
SHA256

409d279f1a90ce4da747111e334f34db1704417392d782c83b87402eca9e0634
SHA512

9ae1e2d5fe6a01faa4c3410831f989d680bc0d1c67f89f4f40aa75bcbad0c6275eefc533cf3140d6f481346a6fc77f5df25b90cd054efc1555d6c35b8baf70ba
SSDEEP

24576:yivtCXWeGKj9Txt9OkcDIvg5lZcL3fHEXy6:3tCXWPqvz5ccq63fHEXy6

Score

5^/10

Malware Config

Targets

- Target
  
  BlueStacks10Installer_10.30.0.1008_native_5d51f12ca73fd38884171981ccb4ba9d_MDs1LDM7MTUsMTsxNSw0OzE1_RlIgTGVnZW5kcw==.exe
- Size
  
  910KB
- MD5
  
  45f1542e8690baf755fb2733195bc21f
- SHA1
  
  25ec98d75b2b5bf218a413133b6766e5804d34fe
- SHA256
  
  409d279f1a90ce4da747111e334f34db1704417392d782c83b87402eca9e0634
- SHA512
  
  9ae1e2d5fe6a01faa4c3410831f989d680bc0d1c67f89f4f40aa75bcbad0c6275eefc533cf3140d6f481346a6fc77f5df25b90cd054efc1555d6c35b8baf70ba
- SSDEEP
  
  24576:yivtCXWeGKj9Txt9OkcDIvg5lZcL3fHEXy6:3tCXWPqvz5ccq63fHEXy6
Score

5^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2