c6cba0e3eaf8c7715db63060006de1445a8e742864c23fb2ecd5194a0c896d36 | Triage

Sharing

General

Target

Notion 4.3.4.exe
Size

160.6MB
Sample

240711-2q8asszfpb
MD5

50ab29f322265d07930cc23bcdd71e05
SHA1

aa8e8aa5ad5af5c68acc373ea5efb0f4289ca012
SHA256

c6cba0e3eaf8c7715db63060006de1445a8e742864c23fb2ecd5194a0c896d36
SHA512

1dae50456c7508b92adb140b04d5c86224f9142dc42f52a30e3bf26fcab8a38a2307bd223e63333ec01514844b5afe5907f6224e03796abe839bb9a09b0e2184
SSDEEP

1572864:8Wl164XHQ6uMUJV9FrR2mA9voadQ3y8l0ucG+qn:8y64AlN+9A5/Dn

Score

9^/10

cryptone packer

Malware Config

Targets

- Target
  
  Notion 4.3.4.exe
- Size
  
  160.6MB
- MD5
  
  50ab29f322265d07930cc23bcdd71e05
- SHA1
  
  aa8e8aa5ad5af5c68acc373ea5efb0f4289ca012
- SHA256
  
  c6cba0e3eaf8c7715db63060006de1445a8e742864c23fb2ecd5194a0c896d36
- SHA512
  
  1dae50456c7508b92adb140b04d5c86224f9142dc42f52a30e3bf26fcab8a38a2307bd223e63333ec01514844b5afe5907f6224e03796abe839bb9a09b0e2184
- SSDEEP
  
  1572864:8Wl164XHQ6uMUJV9FrR2mA9voadQ3y8l0ucG+qn:8y64AlN+9A5/Dn
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2