6d996f70f6b9f99e4ae0aad1f28d224c84c22194551ca4e21f56127eb563faea | Triage

Resubmissions

07-07-2024 01:45

240707-b6jz2azfrp 7

07-07-2024 01:39

240707-b21rzsselc 6

Sharing

General

Target

BlueStacks10Installer_10.41.218.1001_native_51fc3b1a41380306ef41deb4aa5254d9_MzsxNSwwOzUsMTsxNSw0OzE1LA==.exe
Size

911KB
Sample

240707-b21rzsselc
MD5

05cd50890a8efa95d686384d2d96c530
SHA1

ad496d950142315aa8662edb002549e84d3de424
SHA256

6d996f70f6b9f99e4ae0aad1f28d224c84c22194551ca4e21f56127eb563faea
SHA512

6dc050e3c6577299ba4bcc306d1866ddea3eb2499f75f1de96e435d03f03b0ccf4021602be0eb6c816d7a0e81ce29590de247a084d67e88a64fa6ced4043bcf3
SSDEEP

24576:bivtCXWeGKM8WolR74uEFQWa3GZllJCGt3:+tCXWPIWofUuCQWa25JN3

Score

6^/10

Malware Config

Targets

- Target
  
  BlueStacks10Installer_10.41.218.1001_native_51fc3b1a41380306ef41deb4aa5254d9_MzsxNSwwOzUsMTsxNSw0OzE1LA==.exe
- Size
  
  911KB
- MD5
  
  05cd50890a8efa95d686384d2d96c530
- SHA1
  
  ad496d950142315aa8662edb002549e84d3de424
- SHA256
  
  6d996f70f6b9f99e4ae0aad1f28d224c84c22194551ca4e21f56127eb563faea
- SHA512
  
  6dc050e3c6577299ba4bcc306d1866ddea3eb2499f75f1de96e435d03f03b0ccf4021602be0eb6c816d7a0e81ce29590de247a084d67e88a64fa6ced4043bcf3
- SSDEEP
  
  24576:bivtCXWeGKM8WolR74uEFQWa3GZllJCGt3:+tCXWPIWofUuCQWa25JN3
Score

6^/10
- Downloads MZ/PE file
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2