ff55760682fbb9a0ff4ce6dc16e6b29602dd85c9fa094b9b08a5aaf7a1c28d51 | Triage

Resubmissions

06/04/2024, 12:38

240406-pvestsba58 7

Sharing

General

Target

Free Limited Version.zip
Size

53.5MB
Sample

240406-pvestsba58
MD5

58f0c21fc8c2ed6957bace2524b64c78
SHA1

203b3585285b022b22247febb0016fcfd080963a
SHA256

ff55760682fbb9a0ff4ce6dc16e6b29602dd85c9fa094b9b08a5aaf7a1c28d51
SHA512

03880cdcd9a0f040bef0ea9c4b65ebe3f4ccefa6d0c73a4dd07a08b6e0e18f8d7bbab076f1e5816e92d5219599a97bae196a45af3f94d19a72b88bee2791c445
SSDEEP

1572864:bG2UJuYbrxDUCCd+UzyrXZg7W/8OZBGfLMg:0QY/xABYUzqcOKDp

Score

7^/10

Malware Config

Targets

- Target
  
  Free Limited Version/BrutoForce Seed v12.6.1.exe
- Size
  
  132.0MB
- MD5
  
  d94d918b7180204d515cc56978f1e251
- SHA1
  
  cf2ccae0c51e56b85b39bd03f9a02526c8757a85
- SHA256
  
  baf1ff994d4398644013cc69f2c24a1c0c5c39813e5e509997606d3ca0e3a6ac
- SHA512
  
  02a9ea87be704894e508ed96d5c062db0c9b733d3829629ca467c5e411393f11a07292ffd3f7bb308e52755a02f2ff960342721f4939a2932a5f16093f45df72
- SSDEEP
  
  786432:hWXgFwA3WzNQXBVBEEIVeHDWIBV0aMoSctbw17p2NsBHae7XRYBix72TtLwSTRpJ:hWawcvKeh0ew19S8ae7XRuiRAhN
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2 behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4