92853b65366d780bd7e3a7140cb645059f8faad7c70eacc8115a171baf11093f

Sharing

Copy URL

Twitter E-mail

General

Target

KNV671116.zip
Size

127.6MB
Sample

240603-wwpsraff99
MD5

f2d7312355a9865045c03ab926b5fe6c
SHA1

74049572d79aed8f53327f43bdfa213f35df8de2
SHA256

92853b65366d780bd7e3a7140cb645059f8faad7c70eacc8115a171baf11093f
SHA512

0e47625c06189408be38ef65bb3e86adcd514cceab62e8152391c19f3da7c03c35d64dbec08588d43df313228c28eb813481eabe1554f1bdadc453ccb5ba1c49
SSDEEP

3145728:bB5Y+cgNw9N+1VHTdlUX/9+CvfK5bjpUpEJDpSsZdVunq46vF:TkMwDutdlKfK3UpuDpSYzEq46vF

Score

5^/10

Malware Config

Targets

- Target
  
  AddOn/MainTargetAddOn.dll
- Size
  
  233KB
- MD5
  
  735242f2f06d41bb72f9282779392f6d
- SHA1
  
  24035ccb45dd1f30310174cb425aa635893d8d63
- SHA256
  
  1c114c8bdb64555d565a5eb952ce28afcd60520b2ec65ae26025842b6bc78a30
- SHA512
  
  1092c700dcf4db6f1ae404a306590ff2028c156d08010be366c58e68b7717873b186caaac41616ec8a05633d540e0c97b890b056056016949fc750e80933542e
- SSDEEP
  
  6144:zcoMJ/DHHm7MkUivXPHyKR2AFaiyjZNrfOX:zcoMtLmQnOP7RfsaX
Score

1^/10
behavioral1
- Target
  
  Documents/KxRun.exe
- Size
  
  171KB
- MD5
  
  f833a02136c5959af4befd55eadbfdd4
- SHA1
  
  148dd050a59ec12056fc91176c091f07c9bf37b9
- SHA256
  
  c269f95562bc7dd9be312836ee91f05b8ebd565fa05928b18c931a5bd2426619
- SHA512
  
  558464b1a5b70e4d80dba5b1ba4d567eb2a8f992f9646427b23600339756e73584cfed6627f6481aa736f648ecb4b624acf3e4893422e08c11185ce829c5ab21
- SSDEEP
  
  1536:9xx2siCT5A78tVuPevEqqrv9bqvwz++WsZfGAXNrzpwuwc77Px7i:LxViCTO7Qp5wz++R+A9rzpwZcnxe
Score

3^/10
behavioral2
- Target
  
  Documents/Net Viewer User Guide DE.pdf
- Size
  
  596KB
- MD5
  
  8d4fe34a5f49fca2fcf59fb34f48fafa
- SHA1
  
  2203287950c826eb4d2af2159d27bd05a2928079
- SHA256
  
  b52a7fffe5d4fafb7a5cfb30a38445598348c201cc65c7c98a551994e47d8cd3
- SHA512
  
  2469c7003e1ccaa81ecd781ad1697ec4bc18f21099d0841767c6a19b9c68febe3fbc45993fab71c137e7021f8aa3b6e8465e3e5120b952d2eee1566cf190a94a
- SSDEEP
  
  12288:ZopSP1BXPV8dBQ/bFR6677ntzSXBxW0SswF6Dqj:WpSPr/Vp/bntGXeXsAIqj
Score

1^/10
behavioral3
- Target
  
  Documents/Net Viewer User Guide EN.pdf
- Size
  
  995KB
- MD5
  
  6238a15bf562683853267e76856f36d1
- SHA1
  
  8e5b00ee6cf52d0c76515d9bf761d8d6dc2977ed
- SHA256
  
  853142f3ff17c2972af13cd2d98c011f0add3dc40c1fe8d00c3efe23f6d9ea5f
- SHA512
  
  53e6393b423da495d00bff7f37a103b9a7e26b05b343e82c9ba991306386672089696160f23967bc3f8002495e4cde7d94244bf95213300a61a019f88f0f318f
- SSDEEP
  
  24576:FJixsmvIbjgbuMAk1XyKHY6mjJCgzdP5E5V:FkBvIbE6MAI3HuJXzdP5CV
Score

1^/10
behavioral4
- Target
  
  Documents/Net Viewer User Guide ES.pdf
- Size
  
  600KB
- MD5
  
  f46bbafcb38dd3654ef38171bf111861
- SHA1
  
  b6bbeef0e70c0072851d288982e7c972fa6a4df5
- SHA256
  
  17dc99e68403355f8ae42f8198eb049733c6f903d519375d8acc4adfb0e54144
- SHA512
  
  367453c09c532820b1833350b59eacd408fa1f5e5eda06757778cdd6d86f7edb56bfacf9cd9a2e79658897098d062badb3ea58eb98914668ca1e5d9eccca6385
- SSDEEP
  
  12288:xFSAPmIhVoRJEz7TDLRcxdDxZh9mlhYK2urILG:CAP00zHDlcHDxj9luEG
Score

1^/10
behavioral5
- Target
  
  Documents/Net Viewer User Guide FR.pdf
- Size
  
  612KB
- MD5
  
  26bcb1c0e63d59e28d849dc1be9914eb
- SHA1
  
  8f30123f06132f586435b7fb2c5cfac45489f2aa
- SHA256
  
  f93ac8bfce81a73c2832b70ac819be61b12014c90b1ce2c2d56d7e0adbe325fb
- SHA512
  
  adcea6cbfe221135ed2912d25295cd0f8b54e3e5b5f0e05197d590070e15bf3e60430a92839b107501ecf393f298b0367523775f18c51d9033ea4bbfcc00f8d8
- SSDEEP
  
  12288:umt26CegMeyrYIjpdwJ7tDPd3kL+F6ZhElDpr1RAAZeGzqE:RvuMesjpSJ3kL+Fehir1RAQ
Score

1^/10
behavioral6
- Target
  
  Documents/Net Viewer User Guide IT.pdf
- Size
  
  585KB
- MD5
  
  c571916b6d61c2983cec386f28c857c9
- SHA1
  
  aaed302e0074ae9dad3e5b5facd67f549d7b443a
- SHA256
  
  aa127046b597a0b46ed0734ccf9f3ff87a2a495943c41b76f50f2b53b64daa04
- SHA512
  
  8fe4492550b17ba53a0215bceef705a497c2ecde62c6dc81a69d33b5758e5b2d5de228344581a7cbb0cf985333180dc68ab0c0b316713ef47ae94067679ee4c5
- SSDEEP
  
  12288:J7+Hve7xCn9dwUSstmYr/AF+DK8enfjEOFEci3NtVO:J7UmE9pLr/tK6Ohidq
Score

1^/10
behavioral7
- Target
  
  Documents/Net Viewer User Guide JA.pdf
- Size
  
  1.0MB
- MD5
  
  42600e058fd66c879d008146142a8b3e
- SHA1
  
  e3d6f5924b9205be99ce7858b5f785a62e2a91e6
- SHA256
  
  cc827fb11e0289b9bfc291db4e038257dbe77bd5ef473d439c21fcc338fce428
- SHA512
  
  84bb5a43ffa5a6100013fc0e4b6e3e89e3f25424fff47ac81b5497eda335c98338faee590124df7e5aa8dcd1c358e44da812d5755a6185a9c10f9459437fac95
- SSDEEP
  
  24576:BJixsmvIbjg5uuS054f749t7o243wIB2vt:BkBvIbEYR054f749tE1gIEt
Score

1^/10
behavioral8
- Target
  
  Documents/Net Viewer User Guide NL.pdf
- Size
  
  589KB
- MD5
  
  fb6cef26627227f08754d565083d8e3d
- SHA1
  
  d9df1f514bb5d5da77edda28405a89c17504cbea
- SHA256
  
  0829ec5057fcde4fd221db3e58166dbe66ba8b7242fe74b81091344940aa10a9
- SHA512
  
  2d6cee08c8c7019a7cfa843c26f83b1dbc860c3fb37ecc86ec6f6f3d1af3f7e375d471655a60c1b9d3f26595c64450e47907c191b650b6641408cdc57977c0cd
- SSDEEP
  
  12288:QpEah25wWqmmYR5pdUj82sK2KvymCqIQWY0H9/A:Qpn25w5mP3pSLs3m9rWXd4
Score

1^/10
behavioral9
- Target
  
  Documents/Net Viewer User Guide PT.pdf
- Size
  
  552KB
- MD5
  
  914b5a1e8b857f3a8cfba7e3176435e2
- SHA1
  
  90361697277bd004507e6ac51348d378172d6d41
- SHA256
  
  1fd0ca63a987ea9a0b259fce296c428e5c6c40515ece4d5f7065d106f0d62244
- SHA512
  
  be50f43ac7d8e6af9e703d349c713103d0845a3ce520e9240e0d29bbcf8a530e1546a2a33311151b88593bf2c232bfb7715d86d70e881e9fcf1be1aa3c4ce879
- SSDEEP
  
  12288:ICFOliPEZcLL2mnDOmR9F6BOW+TOMbDwUdG3jRyD:IC+mn19F/OMbrditW
Score

1^/10
behavioral10
- Target
  
  Documents/Net Viewer User Guide RU.pdf
- Size
  
  765KB
- MD5
  
  2f12824234e6d08445be59144d92abd0
- SHA1
  
  d91d8546926ea047d60df45b36bc5c44f566c75e
- SHA256
  
  af812f1edd0889ec257c4afab1b12e22cf370d57a6a71975f8d92db55e541d9f
- SHA512
  
  afe0152ba893b7abf0138e9903362d1168296ee086bba6a14235345a9b5d7da113c06662c50cea687149454286e69b3c36b25e19a8d12b7ba95b27451ba14baf
- SSDEEP
  
  12288:ByonSet+tvnxVwvHOGSILMlSJYQVnxGeBnjjSAXReQBLr2/UNGPOpeERpU:BsuoH63S4MGnseBjWAhhBLjcPci
Score

1^/10
behavioral11
- Target
  
  KMNV.dll
- Size
  
  502KB
- MD5
  
  de90de3280cfa528b57bc88df1015247
- SHA1
  
  3dc0fb731226b17a18e846d54bb98f7791cdffd0
- SHA256
  
  fe95318212738df2d895cea3eeafc64cffaa58dee25978af4efaf97f89a2f5db
- SHA512
  
  53ba54a3cc4d635bab35c3d75799635d299f74bae6129d3c4be6a8852daf96ab4ea495f620aae21ec6d067b8b058eeb681674bc1f878934ac93c38fae347bb89
- SSDEEP
  
  12288:E2WtJqpa4ksSkeDEIbQOTe9f3QL/LSDf3QL/LSn:XWtJma4ksSkeghYL/AYL/2
Score

1^/10
behavioral12
- Target
  
  KNV LA/License_DE.rtf
- Size
  
  45KB
- MD5
  
  ea2d78600708acbc3abc3af339c9d1a5
- SHA1
  
  a4ed930c0cc8dbc50c4a0984d69ba3f440a0524d
- SHA256
  
  7354e7ec18ccc5a5042ccf9b2d2df28f47350ba42373de3717b399e3e2b882bd
- SHA512
  
  93cb8b63d13de1c58de554bc84e4e5b3d70a08ac3b7a197bec8475ff904b738e0f5ce0a35578a56b97e9f0d8f665d7f83524dfee3c62fce5d88bb800a67abf58
- SSDEEP
  
  384:e47PF9FPz4HQ2hLP1DztyeiGiaFHUOYueiN/Nt23OSnKnOqj/wUsvBU1mS4nurOu:e4bcrHNWKaSnhAZqCE
Score

1^/10
behavioral13
- Target
  
  KNV LA/License_EN.rtf
- Size
  
  44KB
- MD5
  
  f6cc750428e67776b452cdf75f0b48b5
- SHA1
  
  ac9f957354c0b76f186df4f5aec9ef0a9e36f932
- SHA256
  
  2ff84719f30db238770c0028286776011f977d3df4a6dd82b6476196caa3161a
- SHA512
  
  5a57006a114723b1a3a608975b2de857982a2abe7509d6be6ff2e65132d91ec6fb402e4bc92a047bb2936daeceff1bf3a0c9614eec5106bb39b9d77e9878a6d5
- SSDEEP
  
  384:bHbEugKN79ozVzEF7yByGRk223F3XjltZ1aSSt/k1q8KEYpwJAqDqh8Opj1ePAqx:bHVyByGRk2mF1/TSCZv1UhOvP66hAkDj
Score

1^/10
behavioral14
- Target
  
  KNV LA/License_ES.rtf
- Size
  
  68KB
- MD5
  
  52046ed2dbbf04539bdcee166ef2344f
- SHA1
  
  ea88b8ef10463a7dd27b226004c87f88b43b7b24
- SHA256
  
  a8095275ebdd485d8403b5b22d0949d5935d56bdeb56ca7d6f49f6621956c531
- SHA512
  
  15b3c059a67dc8ee70f27e36e4e3908b00c2e8cc98923e27e761322185ada8af26e0e25ad3e8c8e7d77c9572916f3c29df810a13af7c501024dbcb68be73693a
- SSDEEP
  
  384:9lW//w96176UPz44sdaHyUkhHqLjpbuXaWNiIriwhXrWc/mXSAvKi6rGs2AYARv/:9lL61yUkhHqLjpbVWEOjhXrYxthAkDg
Score

1^/10
behavioral15
- Target
  
  KNV LA/License_FR.rtf
- Size
  
  56KB
- MD5
  
  c291c08ea27efa97aff6d2e98b58836c
- SHA1
  
  db9eebb0b4c92f19cfbdd7b30036890f63831b93
- SHA256
  
  0a225f2151fc8ffc748465dd688e632d2f76932975579db223f5a6ea0358937f
- SHA512
  
  154520033e9f1b08dc4c4862eb6dbbd8e33ee25dc95ad2123ff658462ee2a6ce075eb4c210b370e63250e6b9e2d7d38196166bcde5a1cc0e73cdcca00d785587
- SSDEEP
  
  384:Rr5iNIWxiD6UPz44sdaHtWbxm5jz1sm+zldg5Md0ddlKl3htCi6rGs2AYARv6ZN5:Rrs+tWbxmpz1T+zldg5Md0dmtVhAkDl
Score

1^/10
behavioral16
- Target
  
  KNV LA/License_IT.rtf
- Size
  
  68KB
- MD5
  
  bd96894c0bfe34b449c3c82b16b69707
- SHA1
  
  bd9278644ca6424d36dfb808fff675a40bf95a4e
- SHA256
  
  e4e8abd763cc9a83f9f828af00616fcdfc998dbe40c2f3ecf7c4b4ec07cebffb
- SHA512
  
  a76b92c4a159b758d71bdaf4e09b39c0224f6f6686b41a645c06b9daebebd431ecee03266c2ee424f454ed81783f8e4e1edabbb509ce14765d873bab714104d0
- SSDEEP
  
  384:mp+o9ovE9W00OLlu8mvfZ9vqpeFWp/Do7+qWYsRIBi6rGsNAYAXJqskz2T:mpsMmvfZ9vqpCW5o7dWYn/hAZqnc
Score

1^/10
behavioral17
- Target
  
  KNV LA/License_JA.rtf
- Size
  
  103KB
- MD5
  
  d0528eed6ace56d602f0f6e3c4328ebc
- SHA1
  
  666e6042eecfae6fc59e8763be8db4226ad0b420
- SHA256
  
  256a37dbb058ec848797539f189e6bcf58b9e033105b2e8f7d5b741b7d045621
- SHA512
  
  2ce80ccfb88ae7d058f3b1d3e567ac3e8733521f7aaae9765562010fc8b928d489bcb0bdedea0bed695b570a6098a6dae3b02e0ff6f7ebe0af70e8262734dd14
- SSDEEP
  
  768:VV+SySE3VXt6csKHB97FUAg9RTZl15WmHX/9/dAaIXUVoGxSQSHd90bPEAZFLPE6:VgSzRy1RgP
Score

1^/10
behavioral18
- Target
  
  KNV LA/License_KO.rtf
- Size
  
  185KB
- MD5
  
  8946982f473bb822c63f999b84bb54bb
- SHA1
  
  062cbab7460b6f27ab43679949f7f7ea1836ab8c
- SHA256
  
  cb7a0a3ffd13dffb48a7ae522faae138aa0c2b4a723774e274f51c93e1bb57ec
- SHA512
  
  33ee4e1a7277864e7c6d0b1daed282d7f767593705876e907138c311b2b0e0f2dab2f06a9e33e80eb40d08758660df87fb977234f9735c301adc4993fcf37b1b
- SSDEEP
  
  768:nR+2FRiTI7PSvxi2K9TxjSNoIkRKNR3eurUaOothenXtqgxQhAkDq:nEUBNTxjSGIkRKNR3eurUIEtqgxqDq
Score

1^/10
behavioral19
- Target
  
  KNV LA/License_NL.rtf
- Size
  
  51KB
- MD5
  
  eefbe9dec1f4892c0a5a812e652bedcf
- SHA1
  
  d1f981c087fd644ea2844a3d2490ee611245470f
- SHA256
  
  7b76814797f07abdd612f20176465d7fbef8fd0c5d4d8097680aae1d658c2df3
- SHA512
  
  2ca443cdcce414bc5ffdd916d471bcd82863a3a624a602bac8180f4886f95f5c7c93ccadb259110c8e14678c7835e16297e152a24253184db467cfb27e945249
- SSDEEP
  
  384:GJtAfWq6UPz44sdaHyuCtOke3IoWr2bx4DrU8Emg2Ii6rGs2AYARv6ZNYGb:GJoyuCtOke3IHi2r/EgrhAkDb
Score

1^/10
behavioral20
- Target
  
  KNV LA/License_PT-BR.rtf
- Size
  
  64KB
- MD5
  
  762fa5acec440920b3aabe11c4c7c6f4
- SHA1
  
  cec21b48c13bf9e56d8df54b7d1580a88321ddb9
- SHA256
  
  18c1052013bd8d8c8b2cf811eee97c08f459653f3e4f848a0b0b3e046d636f69
- SHA512
  
  34235bf0a391c733bafaabf133cc8ccf325d9782d3e2b4a915b195725583e7533710e99747049c90fac55f4520314ef40cfbd08430a969da8bc2c83709ff9504
- SSDEEP
  
  384:VKtMsZLf1B94eBdaNtI1AZpg4+KgSaYiItrfRuyq5gM4REK8rkKQ0v69mQwdwc6E:VKZQtI1AZWfKgsBpagX8rkK82hAZqCC
Score

1^/10
behavioral21
- Target
  
  KNV LA/License_RU.rtf
- Size
  
  79KB
- MD5
  
  77f1efeb5e0d84442b7eefc9bf86746a
- SHA1
  
  3508439a58524ecc3e3b6c9bb43bc0e208e935ea
- SHA256
  
  dff1de02695309741a9e62e13437860d5c9b04c31aed86d3eebb7278fc6d689f
- SHA512
  
  db76e4cf126e2519bc1cdc604c7a582ed3169d85005d99975782f6e79a1a2562429b28cc8d907edfae08dcf0317274fe5bf99e4ac0676c70b872a5a6c508912f
- SSDEEP
  
  768:e++rfmcaBP1L68bgG39nRY6eSTcBMTjB7ZwmpqrTEJJoghAZqXn:enfG9HHsKjBrfw4n
Score

1^/10
behavioral22
- Target
  
  KNV LA/License_SCH.rtf
- Size
  
  77KB
- MD5
  
  671c633fd89b2a83ae566deb1c5c2b0a
- SHA1
  
  cfb9773b38686c989166b05511c7bb85c1b9a940
- SHA256
  
  1168a06307f34908c15336408d67316b94b5e63d592025cb40755c8657bc7f9c
- SHA512
  
  1d646a2c2420a9ff8864e2a71d79caf4ad720f8d86cd0ffcb076bcdc021cc00e05c5f629f8b688ae026947d31c06eb9ed6cc406eb44b90af89ab81115ff62664
- SSDEEP
  
  768:xEqytii2UbGarCfswJ5CdDICRa+8blgpQ7LhAZqCs:xdyFYfnbhMjs
Score

1^/10
behavioral23
- Target
  
  KNV LA/License_TCH.rtf
- Size
  
  86KB
- MD5
  
  9e63d9ef2fffd5a757f3492552f6c2e6
- SHA1
  
  e4bb626fe9fa76855e775da36f15d18590377c45
- SHA256
  
  03339b0922b83bafda6af27eb76c6614a68c89e16029efb8a455c806dcc6fe5f
- SHA512
  
  838408f8e550768ad5fef1c235fc7d69555e79f0e739b0c62eacd4385b920fb8f7ab87aadd625eb6468a9cdd2e8ec027a6142aea3364c5b8d58dd69807c580a8
- SSDEEP
  
  1536:THjV6TkQnzb0tGQwFhjW31AoAW1tsVc/V7S+o8Zejq:PV6TkQnzb0tGQwFhjQ1AoAW1tsVc/V7V
Score

1^/10
behavioral24
- Target
  
  KNV/Netviewer.exe
- Size
  
  1.4MB
- MD5
  
  14e789071d2084087642f4660fc35566
- SHA1
  
  8628dc2a87b961ea60cd9df38b230b4ee74a1712
- SHA256
  
  51b9f691c5d7253396295fa57e5e2cf8a62c365ffe07bf810815c67b2640392d
- SHA512
  
  775f846c474bebe3b9a819f2ba50f511c80b1f60ce802bfcfdcab8c54d2674abffc847b141a33e1801f3ef4d867bcd6730efab1d6d882c53602730de8436de80
- SSDEEP
  
  24576:3n++BCabKJEFdNNJEFdNbqJEFdNPJEFdN5JEFdNWJEFdNiaEFdN+:vdbiEFdNPEFdNGEFdNxEFdNbEFdNOEFn
Score

3^/10
behavioral25
- Target
  
  KmInst32.exe
- Size
  
  546KB
- MD5
  
  c16e31706b86ad93e34ef15690a6cfde
- SHA1
  
  0d71d7924e30ac12c21d09ebdf3a4025e1b046bd
- SHA256
  
  1d3c79436fda6b03b8bec05d581b301d4fb1170ac1d0d0ac5fa1fb234ed30b48
- SHA512
  
  9984cadeb1054e1b0110c54a2ae65fde5453b2e1890e0199d503b2e584a619e8f1dc1ec9df84c2f940f9ae8c49f6f575fdd1f65a1aa6c3b5e3b523e7fe24e461
- SSDEEP
  
  12288:Jv5GHLzasj8ZB/DPiN6+Ew153C8CVesFpUD0zDRu:7sLzdKB/jiN6+Ew73C8CwkqDuDRu
Score

1^/10
behavioral26
- Target
  
  KmInst64.exe
- Size
  
  645KB
- MD5
  
  440214b9602b1ea16ed86af7187c6033
- SHA1
  
  cf41cc6f2c208634bf3410e2aad9333cb01f3bfb
- SHA256
  
  9387c5c3465d473f82cb341704c4a301ff7ad6ec9acd45d4bfaa1a38b6461eb9
- SHA512
  
  4cde6efe699f69834c7ef74abf1927da2cd95ccbc0379a4866b83b5b9f618a47132a2774da97d4e2f0d8fb803b1b2f7f010dac02a83f52060f7f7fa374f0a9c8
- SSDEEP
  
  12288:YBKq6CnVpBTWpxrmPwLlnwjTIWtMG+8PjrakrR0z0MPDzYz4gUsDu:YFz7TLPwLlwjTIWakV0z0MP3Ykyu
Score

1^/10
behavioral27
- Target
  
  KmInstall.exe
- Size
  
  565KB
- MD5
  
  7383be3a30f5051b37cc238742745a3c
- SHA1
  
  4e09e119d95fc52c0675614c31d01ecbc7254e7e
- SHA256
  
  43097228487eca0837f4e5d66cfc0e3bc4c0bdbc62151eab8ef8cf3ddccb122a
- SHA512
  
  430bb6580f0e22fc594a141fe6ff7646adcc286290cc5609fed1cbe1ce17798505caba38efbf65365b9f6ff26f28589485a0aef2693fe85bfebeb5437fc2da8f
- SSDEEP
  
  12288:g4lg5QBgZfKSGDOiYZ5qKi4y9OwRtFalbOVE6:g1ANDOiYZ51Lw3FZE6
Score

5^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral28
- Target
  
  Readme.html
- Size
  
  53KB
- MD5
  
  1559b4deef0ff2e4585c7e96d7e34265
- SHA1
  
  7cc845e1abf55dcadaa5dff15d2374209d4bf4bd
- SHA256
  
  b222a17bd511f24cccd3d7e4a50f74a57cde066fc4ab74ad4f7b45bde86a003d
- SHA512
  
  9312487a6c9f70cb332403fcc02c8db425384a84ac8230752b791ca0cb62a1a7f9fc136d56b61af78f6b1d517e056d64ba3664c7901f48f7a7377f840d2caca4
- SSDEEP
  
  384:SFa0UCZt2msKDHMMrtZVV61YejroQ0pILjT0C2M8bedzBn3O8zGrZco5zmJh7MQm:0MMrEYeV0pvzht4IyHRj3pVny0/Snn
Score

1^/10
behavioral29
- Target
  
  Readme_j.html
- Size
  
  60KB
- MD5
  
  224a262d3e36103e1b25589a81e514f7
- SHA1
  
  1e7298eb8ee74e1775bb359bbf1f5508d58e20a7
- SHA256
  
  3d3f331bd7f40185588fb3f114a2a4a9aa1c73a89f8836fe6c5f00507e37b7f6
- SHA512
  
  b8e5d75977666220a98808f0a8927502f3a05f7b1aa5cdd554f549d14c5b73497e06849dabde9bc248ebf68511416ab6ce7a063ec04437bed33cbdcf878a8459
- SSDEEP
  
  384:gCgt2msJyEnBvj1YejroQ0pILjT0C2M8bedzBn3O8zGrZco5zmJh7MQHlZsF3mTm:fxYeV0pvzhENx5s8BnB0pfk9K
Score

1^/10
behavioral30
- Target
  
  Setup.exe
- Size
  
  118KB
- MD5
  
  cde821a2559d4803dd1d854a6814d98a
- SHA1
  
  c734c8bbd63e413af7e931c98e5e1a6788155fdc
- SHA256
  
  eea4b6d89590c8d88ab9e2cfb9186eb3d41d3a72370457f0ec572ee14981fde9
- SHA512
  
  c995c9573a444c1815d041df1d425d5735c01a16021db5f58f7a01a3a475a246fad783e66f4d927215da82872bdeaa39c3704174b915f86771e1da5152e3195b
- SSDEEP
  
  1536:ifYdx7s/8M7YSm3jH2WoRGnyo+vHmgszE/m0LDNvv1zReoc0xv+Rytk5udIvfDso:iR/8M79m3q1Ne90tvSYv8y+5udifDso
Score

1^/10
behavioral31
- Target
  
  support/Setup.exe
- Size
  
  729KB
- MD5
  
  cb08d2324d119294865bf9364945b4ea
- SHA1
  
  8ce3570f4c2022eb2f8eac3ffc9461396c27ff29
- SHA256
  
  7b9849e77e316f051a0290b5d14629b776dd15d9dcf1ce0ad10d4cc21079dd8e
- SHA512
  
  3c22ddc0ce21eafa4cab79f13cfbffbd950a1155308efc9217198980cf117a770e66ced5256cb9e762c56471c95b1ff8325b99ef52725cb6fc5f99887d2cb55b
- SSDEEP
  
  12288:9Uc4qkHijwsVeWPehCdsYmoVanxf+yvAr4JQh:9Uc4pGwsPPe33oKbvuHh
Score

5^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Checks computer location settings

Checks computer location settings

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32