847a40ca8a3e2616ca25561a74f0cd27b4d9d7bb8f3f8399b747a85ca369b611 | Triage

Sharing

General

Target

New Compressed (zipped) Folder.zip
Size

23.3MB
Sample

240910-jr9k5stanp
MD5

d8355a1a67e8ea413a7fcecf0166eece
SHA1

ad168f25348937cfc97b744ab3cdf226155ff8e5
SHA256

847a40ca8a3e2616ca25561a74f0cd27b4d9d7bb8f3f8399b747a85ca369b611
SHA512

68299e63d8f27c030e15eb34ab66edc251678eae71c51a36c31f19176833058957685d13de4c1abccbca00a8ad4e4b74aea9dfb3358df6f75d022b1738b0abc6
SSDEEP

393216:QwjLLgYjdm8j4dWY0QqAMdm2n/WzoU32t9obT2s0ghmfE+SeK069/T72O63eoh5H:Q+LVjEK4dhwm2OzoU2/oD3hmwen69/TU

Score

7^/10

discovery upx

Malware Config

Targets

- Target
  
  New Compressed (zipped) Folder.zip
- Size
  
  23.3MB
- MD5
  
  d8355a1a67e8ea413a7fcecf0166eece
- SHA1
  
  ad168f25348937cfc97b744ab3cdf226155ff8e5
- SHA256
  
  847a40ca8a3e2616ca25561a74f0cd27b4d9d7bb8f3f8399b747a85ca369b611
- SHA512
  
  68299e63d8f27c030e15eb34ab66edc251678eae71c51a36c31f19176833058957685d13de4c1abccbca00a8ad4e4b74aea9dfb3358df6f75d022b1738b0abc6
- SSDEEP
  
  393216:QwjLLgYjdm8j4dWY0QqAMdm2n/WzoU32t9obT2s0ghmfE+SeK069/T72O63eoh5H:Q+LVjEK4dhwm2OzoU2/oD3hmwen69/TU
Score

1^/10
behavioral1 behavioral2
- Target
  
  Stardock CursorFX 4.03 Multilingual [PeskTop.com]/Stardock CursorFX v4.03/Crack/CursorFX.exe
- Size
  
  655KB
- MD5
  
  028ec2f00c40ac96f194228ffc2fc117
- SHA1
  
  8f7827d4c2a11ff4e3bdc2f27ab6c4046e27300b
- SHA256
  
  fb2724e36069fb07474931d479a96e473c6f4f23acc0fb6a7489b86ed35a47b3
- SHA512
  
  698d7db91b55c07df1729aca140ebff4f5a24af6cd3fa459a1ebf7e437464f2cf62f91993c62301324dd5815614b64a62a181106db9c41184749bf2f0b8218ab
- SSDEEP
  
  12288:l0AEtKkZPhuNwVvMBxkYOwuT1DISvy2i/Ea1ZbvBUC7PaT+lXnlND7lS/KlgntF8:6kllS/XtFYpi3PmD/jye
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  Stardock CursorFX 4.03 Multilingual [PeskTop.com]/Stardock CursorFX v4.03/Crack/CursorFXConfig.exe
- Size
  
  1.1MB
- MD5
  
  19d0fdd23c79c9a12f3627207486bbe2
- SHA1
  
  8348adc5c78246eac71d2dec0f77d7c8e6c243a9
- SHA256
  
  3fc33763ad6d833590271d205f54f03fa35455a55956525f8da6377cec84b122
- SHA512
  
  4629e7a292ec25fa2b21df97d17fc4ded2c59395b9d75a9ee0ddc150f6a6d7c0fa89459083d6c53438b1558b0c7a41bc3a11ca64ccd4a1ef7dd811d1edf7a469
- SSDEEP
  
  24576:g7v2AIgRD+rT/y6rsQ4KJRveCE0m/vlgVIRWC1+zU:q2ALYyaDjve3dVg+ERU
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  Stardock CursorFX 4.03 Multilingual [PeskTop.com]/Stardock CursorFX v4.03/Crack/Read_Me.txt
- Size
  
  173B
- MD5
  
  d790459759e2f5f2bd766a887ece37c5
- SHA1
  
  537193cb6439ff9c26222b2bdc2865b9bdbb7d00
- SHA256
  
  cd3cbfa0e8af02ca07edc9fa76464ff9b221aeff28e6eff4b2e1976198139362
- SHA512
  
  56995642d86b6b9d9712886c93b62489025421d9101f759bd10754495fdaaa33c361b415aa63204f0ff560e53aed1b204edab838e5b1622360d3294e0f56fe98
Score

1^/10
behavioral7 behavioral8
- Target
  
  Stardock CursorFX 4.03 Multilingual [PeskTop.com]/Stardock CursorFX v4.03/Stardock CursorFX v4.03 Setup.exe
- Size
  
  19.0MB
- MD5
  
  2a56b3151ef00fe5e317bfa5b6511906
- SHA1
  
  1d9f2425e1a24e918a36472ae8a097478350f261
- SHA256
  
  0198e05d4b4af04f82aef95e0c2d581ee4de15a454214ba200396be8d50581b5
- SHA512
  
  c74aa2c4f14b2030031d2b4c16ed7788e5887dd42dba3a6d9bf0c96a946816edac79a5ad6b872e9f613000b219e35a37641332431b864a6d82688a7b99de9175
- SSDEEP
  
  393216:QAPF8K4/MLyYMWwwrPq0Vz8RQAI3ZHK/hSbWvpxkpjE++q4ty9eqBAsCJX:vPFdeMLnfq0ORQAi5KkbWpxkD+/A9eqg
Score

7^/10

discovery upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral10 behavioral9
- Target
  
  winrar-x64-701.exe
- Size
  
  3.8MB
- MD5
  
  46c17c999744470b689331f41eab7df1
- SHA1
  
  b8a63127df6a87d333061c622220d6d70ed80f7c
- SHA256
  
  c5b5def1c8882b702b6b25cbd94461c737bc151366d2d9eba5006c04886bfc9a
- SHA512
  
  4b02a3e85b699f62df1b4fe752c4dee08cfabc9b8bb316bc39b854bd5187fc602943a95788ec680c7d3dc2c26ad882e69c0740294bd6cb3b32cdcd165a9441b6
- SSDEEP
  
  98304:6NRBOBfKgQIm9EOTqw8vjh9Ac9nUNupK4hVvcF+yHrAr:sR/gmeOqv7Ac9F0kB
Score

1^/10
behavioral11 behavioral12

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12