General

  • Target

    Genevestigator_windows-x64_9_15_0.exe

  • Size

    128.6MB

  • Sample

    240603-m7cg5adf34

  • MD5

    380439388178a8c2c751d3df05065175

  • SHA1

    5d081bf6b8872a3a7663abdae8b02454be7ecd83

  • SHA256

    f38e50746f8fe2bfbc5d189afc3150fea57fe79a06dd68d7fcf26e84ee83cc91

  • SHA512

    506730a7221b7015ad94e3ce94faec5a5fd90cdd6bce6cc9e1e9bad7200b09565e2831b8ceb7556952975273ce44b9c91126818de34110d6985bf1f2ba75761f

  • SSDEEP

    3145728:Lv9R2hiQ1BUEs7Zew95J9Ki58C7HshCHeDi:Lv9czbPsIG9IC7HyCSi

Score
7/10

Malware Config

Targets

    • Target

      Genevestigator_windows-x64_9_15_0.exe

    • Size

      128.6MB

    • MD5

      380439388178a8c2c751d3df05065175

    • SHA1

      5d081bf6b8872a3a7663abdae8b02454be7ecd83

    • SHA256

      f38e50746f8fe2bfbc5d189afc3150fea57fe79a06dd68d7fcf26e84ee83cc91

    • SHA512

      506730a7221b7015ad94e3ce94faec5a5fd90cdd6bce6cc9e1e9bad7200b09565e2831b8ceb7556952975273ce44b9c91126818de34110d6985bf1f2ba75761f

    • SSDEEP

      3145728:Lv9R2hiQ1BUEs7Zew95J9Ki58C7HshCHeDi:Lv9czbPsIG9IC7HyCSi

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

MITRE ATT&CK Enterprise v15

Tasks