574fa9b1b7c45f2ba2f0282a24052acbf118e9e6dd2e8142116a83a19211b235 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

FIXAUDIOWI...up.exe

windows10-2004-x64

6

FIXAUDIOWI...up.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

Target

FIXAUDIOWIN10.rar
Size

199KB
Sample

240630-r9jfnsshmm
MD5

caa16bffd5a4463dc4dfa03d1e4218af
SHA1

812427dabd40fe91c43d0ba77f2ea810558e0f36
SHA256

574fa9b1b7c45f2ba2f0282a24052acbf118e9e6dd2e8142116a83a19211b235
SHA512

384d515d1caa6d365b52035757ff38678babab8659c997e59ffbc682323289dca692014ab5a4bd5173d3e8de1e0897a765e444be1d85f6448083f4fea73216a2
SSDEEP

6144:LCpPoeFwMG94ouKKoqqhgltE7NzNoZuy4YHiLhKPqMl:LCp/F5K1pIdKNOZHMeqMl

Score

7^/10

persistence

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

FIXAUDIOWIN10/KillShutup.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

14 signatures

150 seconds

Behavioral task

behavioral2

Sample

FIXAUDIOWIN10/Shutup.exe

Resource

win10v2004-20240508-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  FIXAUDIOWIN10/KillShutup.exe
- Size
  
  154KB
- MD5
  
  aca60475fb5d1a070301d45786c999fe
- SHA1
  
  6b5c65c4d1ca940bbba1e31d98771b50647dbcb3
- SHA256
  
  5593eeac10527b135b7ecbbbedf6c2d9e5c8a36c9ff078b077ae0e3087f7b45e
- SHA512
  
  4859b3d7487cd72ededea2a9470fcb832c403193f7b207a24c2c506007981c58340eb05e4a128bab869a3d90bdf27206ef3e8932784bc28e411793c4b0ca6938
- SSDEEP
  
  3072:TahKyd2n31W5GWp1icKAArDZz4N9GhbkrNEk1YT:TahO+p0yN90QEr
Score

6^/10

persistence
- Adds Run key to start application
  persistence
behavioral1
- Target
  
  FIXAUDIOWIN10/Shutup.exe
- Size
  
  154KB
- MD5
  
  c0917186ac00713ef8f410a830c1b581
- SHA1
  
  5a8c19147c03b8b6f2715376b1345bcfc774d06a
- SHA256
  
  9e9600a5912eb1c26b93bebb318ea0df8f478bc9fbad4252ddaadaa9bc65a0ac
- SHA512
  
  e44ebfba49c428522516201f34986303016ea3421f20d2d1ba60420bda2d316d041d3b3b1768eda480a03c0f7f88a3d4a1b3a14108a3be14d05f3f5a4ef5d870
- SSDEEP
  
  3072:JahKyd2n31f5GWp1icKAArDZz4N9GhbkrNEk1ZT:JahOfp0yN90QEu
Score

7^/10

persistence
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Adds Run key to start application
  persistence
behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy