General
-
Target
Setup_s.exe
-
Size
95.5MB
-
Sample
240412-gdlwtafh54
-
MD5
e24108d6d85ad78463f4534b202edc7b
-
SHA1
43166dd0efcc02fd08c0b6079f19d42214ea6bf5
-
SHA256
d5853b4bb76a2e0073b188d253223f7373cb400c7b2ddf621e5a3b746d5583b9
-
SHA512
ffe8ede6e20d1292c72cb3aed1e17f7179d4f79006a8cd0a4e236d82ca5a990cdfa986a421caf60d6b513bbfc0faac82ba9a916724f95537fa464a7d236e316e
-
SSDEEP
1572864:Uo9YTf0ynD+l4u1/hNPk0b+pS2iPXP3qZWA9JUIEe2obBh6O2bs0wGaFG5:U1nDk/hNPwSDPX/qZWAEevfP0s0wTU5
Static task
static1
Behavioral task
behavioral1
Sample
Setup_s.exe
Resource
win7-20240319-en
Behavioral task
behavioral2
Sample
Setup_s.exe
Resource
win10v2004-20240319-en
Malware Config
Targets
-
-
Target
Setup_s.exe
-
Size
95.5MB
-
MD5
e24108d6d85ad78463f4534b202edc7b
-
SHA1
43166dd0efcc02fd08c0b6079f19d42214ea6bf5
-
SHA256
d5853b4bb76a2e0073b188d253223f7373cb400c7b2ddf621e5a3b746d5583b9
-
SHA512
ffe8ede6e20d1292c72cb3aed1e17f7179d4f79006a8cd0a4e236d82ca5a990cdfa986a421caf60d6b513bbfc0faac82ba9a916724f95537fa464a7d236e316e
-
SSDEEP
1572864:Uo9YTf0ynD+l4u1/hNPk0b+pS2iPXP3qZWA9JUIEe2obBh6O2bs0wGaFG5:U1nDk/hNPwSDPX/qZWAEevfP0s0wTU5
Score9/10-
Adds Run key to start application
-
Legitimate hosting services abused for malware hosting/C2
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-