bddcc5c23eeb7480e9ad4eb4a0ab6509eb1f833bd7f36f54646cdbe355ab95d9 | Triage

Resubmissions

17/08/2024, 20:54

240817-zpzadswepg 7

17/08/2024, 20:53

240817-zpcrdsyglk 7

17/08/2024, 20:50

240817-zmvjesyfnp 7

17/08/2024, 20:49

240817-zl6v3awdlc 7

17/08/2024, 20:46

240817-zkrdzswcmg 7

Sharing

Copy URL Twitter E-mail

General

Target

aimbotproof.scr
Size

1.1MB
Sample

240817-zpzadswepg
MD5

bf0380104c4fcdbefaadec4ccf92970d
SHA1

1622cfe6c1c85fbff98eb2707ea094a89f718dc2
SHA256

bddcc5c23eeb7480e9ad4eb4a0ab6509eb1f833bd7f36f54646cdbe355ab95d9
SHA512

d1b9b75af30f14911deca026b015831f71cc7d4f07972aab6fe2c9c9646dca7292edad2637cba2d221695ad260fc340023ddfc5bc1fa40c0e9ecd598e7b50019
SSDEEP

24576:3BkVdlYAFS3AqE4ebK9hLINiOXDH+4cwwLfMqPBYRrky:xsvEERbdNpmLfMqZ4

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  aimbotproof.scr
- Size
  
  1.1MB
- MD5
  
  bf0380104c4fcdbefaadec4ccf92970d
- SHA1
  
  1622cfe6c1c85fbff98eb2707ea094a89f718dc2
- SHA256
  
  bddcc5c23eeb7480e9ad4eb4a0ab6509eb1f833bd7f36f54646cdbe355ab95d9
- SHA512
  
  d1b9b75af30f14911deca026b015831f71cc7d4f07972aab6fe2c9c9646dca7292edad2637cba2d221695ad260fc340023ddfc5bc1fa40c0e9ecd598e7b50019
- SSDEEP
  
  24576:3BkVdlYAFS3AqE4ebK9hLINiOXDH+4cwwLfMqPBYRrky:xsvEERbdNpmLfMqZ4
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1