Overview

overview

8

Static

static

1

crash-band...y.html

windows7-x64

3

crash-band...y.html

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    crash-bandicoot-n_Sane_Trilogy

  • Size

    180KB

  • Sample

    240818-wnr8xawfpg

  • MD5

    a378e7220c3b955c29fbb971a47cd2cd

  • SHA1

    8fe9f4560909b646617685a94fcb972dd486536c

  • SHA256

    c33d3bd83305e57fceaeef8660e22a021f6d1756809fb36ffaf0a29d65b7856b

  • SHA512

    fc2541f768c6b32e8a0a1580a488d01cb6ae3c87c0c4f8129b2eb4444a7630028bcc707c6d10d88ff3fb52c22378426b3ac566d62fba32cea8d6f82774438d1b

  • SSDEEP

    1536:8veW7aVNZHxYftVVYQEdR4Dzll0DdU/30vD9329s4DtdT480wJprIICpsDxg:8veYTfuQwSllsCJN4gJpG

Score
8/10
discovery

Malware Config

Targets

    • Target

      crash-bandicoot-n_Sane_Trilogy

    • Size

      180KB

    • MD5

      a378e7220c3b955c29fbb971a47cd2cd

    • SHA1

      8fe9f4560909b646617685a94fcb972dd486536c

    • SHA256

      c33d3bd83305e57fceaeef8660e22a021f6d1756809fb36ffaf0a29d65b7856b

    • SHA512

      fc2541f768c6b32e8a0a1580a488d01cb6ae3c87c0c4f8129b2eb4444a7630028bcc707c6d10d88ff3fb52c22378426b3ac566d62fba32cea8d6f82774438d1b

    • SSDEEP

      1536:8veW7aVNZHxYftVVYQEdR4Dzll0DdU/30vD9329s4DtdT480wJprIICpsDxg:8veYTfuQwSllsCJN4gJpG

    Score
    8/10
    discovery

    • Downloads MZ/PE file

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks