fc1a02b509b8f351ac45bd45efd4e7296b365545a48ffd6a14e8e07bc7189155 | Triage

Submit
Reports

Overview

overview

8

Static

static

3

IDM_6.4x_C....7.exe

windows10-2004-x64

8

Resubmissions

19-05-2024 23:21

240519-3cgrcsge79 8

19-05-2024 23:14

240519-28d5nsgd9s 8

Sharing

General

Target

IDM_6.4x_Crack_v19.7.exe
Size

59KB
Sample

240519-28d5nsgd9s
MD5

27016937b5781c4f84b6b3432170f4d0
SHA1

bc812a8c4d44a3503ffd6a46e4fdab925c622344
SHA256

fc1a02b509b8f351ac45bd45efd4e7296b365545a48ffd6a14e8e07bc7189155
SHA512

24a726276cc53c5a0d075d1bf930e24b3a1891e0754b17c28a5a35b5677fd792d9adb55e5e0a7fe18f056febb8af4a49a5a0fac33389205d1f4dcc0060422be7
SSDEEP

1536:5ilGC+HMax3AZ5GiavgfreZCRIr71mazhAN5TAS:5igLV3SIareERU5mazh3S

Score

8^/10

evasion

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

IDM_6.4x_Crack_v19.7.exe

Resource

win10v2004-20240426-en

windows10-2004-x64

17 signatures

300 seconds

Malware Config

Targets

- Target
  
  IDM_6.4x_Crack_v19.7.exe
- Size
  
  59KB
- MD5
  
  27016937b5781c4f84b6b3432170f4d0
- SHA1
  
  bc812a8c4d44a3503ffd6a46e4fdab925c622344
- SHA256
  
  fc1a02b509b8f351ac45bd45efd4e7296b365545a48ffd6a14e8e07bc7189155
- SHA512
  
  24a726276cc53c5a0d075d1bf930e24b3a1891e0754b17c28a5a35b5677fd792d9adb55e5e0a7fe18f056febb8af4a49a5a0fac33389205d1f4dcc0060422be7
- SSDEEP
  
  1536:5ilGC+HMax3AZ5GiavgfreZCRIr71mazhAN5TAS:5igLV3SIareERU5mazh3S
Score

8^/10

evasion
- Blocklisted process makes network request
- Blocks application from running via registry modification
  Adds application to list of disallowed applications.
  evasion
- Disables RegEdit via registry modification
  evasion
- Disables Task Manager via registry modification
  evasion
- Disables cmd.exe use via registry modification
  evasion
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy