54b51bf19ffce063577597534e1658d25e5756072366cceafec91af5d7382f4a | Triage

Sharing

General

Target

V1.5.6.+.V1.5.8 - Kopie.zip
Size

3.3MB
Sample

240710-qy8qra1dpq
MD5

376d8646fccd79826d049751bc72ec81
SHA1

63b00bc8e21d97d3be49495a0511b7d38645b6b2
SHA256

54b51bf19ffce063577597534e1658d25e5756072366cceafec91af5d7382f4a
SHA512

b6bfee3294055bf0344430bba9d7ea82c55cb4aa6b84b437ad267a48f48f0f3465f47857a8c8748b42a3385eb783840cbd968395ac860b31a2005986b147cf77
SSDEEP

98304:4irm4peYUuEpjoaua/Iu9ugQ4uPlUST1laev2j:4L48iEWCj3uNbld2j

Score

7^/10

persistence privilege_escalation

Malware Config

Targets

- Target
  
  V1.5.6 + V1.5.8/SecHex-Spoofy V1.5.6/SecHex-GUI.dll
- Size
  
  1.3MB
- MD5
  
  ad714ee48d2e829c5012c65de6166c05
- SHA1
  
  5880bac89ca346dae62c053aa49c028372388edd
- SHA256
  
  7d32d13d123871650794a1e172adc70bc8dafbdb762f49d889f813844d532b20
- SHA512
  
  a51252950455dbfb5dfd564689e605b022bdf26f80ad12f3fde3e341a14b8f764324ff3be6f29e4855bd499141e23628e9aabb0e439627dc802814db091d54ee
- SSDEEP
  
  24576:ZfaPwrgBrO1BKH8jPcWYVxHCoh0XeV61r9qZWe7d7NWS91GsVz9cebgS9aI:ZCPwrgBWBKH8jkDVFCNXODzWS9HfX0HI
Score

1^/10
behavioral1 behavioral2
- Target
  
  V1.5.6 + V1.5.8/SecHex-Spoofy V1.5.6/SecHex-GUI.exe
- Size
  
  144KB
- MD5
  
  a3a73bb0b21c4c4c0771d4fda37ad34a
- SHA1
  
  a61e96bcd872da24a548b9d2bd706af102426cea
- SHA256
  
  9c04ca4639650f2707e817c8852bf8e128ab328fa4ef790aba96f8ec17ad5316
- SHA512
  
  b4bd8522d784ed13e8aaf25ab10c3b7a08bc665d79fe1365339381cd783d4df010bf5e0cc934ef6a93592d471bf2e9b67015a680f2454cb1e6a37f889dfdea68
- SSDEEP
  
  3072:98vbzyQ6Y1YXrbNK+3FNxacPEMk65RQA2TWk:9szAXNK+3FVFRQdTW
Score

7^/10

persistence privilege_escalation
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Netsh Helper DLL

Privilege Escalation

Event Triggered Execution

Netsh Helper DLL

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

persistenceprivilege_escalation