a63c9a28ea93633e43e95d6955649973be10868d6a0ae8cfd2e461edd41afd86 | Triage

Sharing

General

Target

FortnitePorting.exe
Size

63.5MB
Sample

240715-c5ejlaxajc
MD5

44426de404f535e8745ee7de91be06e7
SHA1

2a6d8ba9f24496658247a6f3fa8fe335e71eb844
SHA256

a63c9a28ea93633e43e95d6955649973be10868d6a0ae8cfd2e461edd41afd86
SHA512

b02b2b70fc94371e70b7a7e488ad56c0b5bd083a422f23faa53b5ae5abc1dd35f80787c672823550f25e18b89662a5714acb8b194a91a3e940efb82e86106075
SSDEEP

393216:9INc2TBoscUx2BRuVnzWECKyi4PjvIZOzGnOY51/nX:OWsosDIBRYzfDy7Ldqb1v

Score

7^/10

Malware Config

Targets

- Target
  
  FortnitePorting.exe
- Size
  
  63.5MB
- MD5
  
  44426de404f535e8745ee7de91be06e7
- SHA1
  
  2a6d8ba9f24496658247a6f3fa8fe335e71eb844
- SHA256
  
  a63c9a28ea93633e43e95d6955649973be10868d6a0ae8cfd2e461edd41afd86
- SHA512
  
  b02b2b70fc94371e70b7a7e488ad56c0b5bd083a422f23faa53b5ae5abc1dd35f80787c672823550f25e18b89662a5714acb8b194a91a3e940efb82e86106075
- SSDEEP
  
  393216:9INc2TBoscUx2BRuVnzWECKyi4PjvIZOzGnOY51/nX:OWsosDIBRYzfDy7Ldqb1v
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2