68e6af8e455b2804eed7fb34f68f173ba6d95adfe1f8814a4fc6e7bbe4cd8860 | Triage

Resubmissions

21-09-2024 19:55

240921-ynfk8azfqd 5

21-09-2024 19:43

240921-yfrnhszdrp 5

Sharing

General

Target

VisualStudioSetup.exe
Size

4.2MB
Sample

240921-ynfk8azfqd
MD5

b8cca496dc674c18d8f9b7b205c7d339
SHA1

62c57e3074cbd4b2f2278d412bd0bfac8d996eb7
SHA256

68e6af8e455b2804eed7fb34f68f173ba6d95adfe1f8814a4fc6e7bbe4cd8860
SHA512

8a90a406a816477989638e108de369da8e57479b83b7c556789d971681f9a112867e0efa915883103805246880b4e84fec2c90f57eb89c9a135e951f27022b3c
SSDEEP

98304:JEbiSkYmlBsMftfJaBjAgylspFqTLGW+Nu+GHtJgRU4eZp:WlmlBs+tfUBjAnupFqTLgNh+izeZp

Score

5^/10

discovery

Malware Config

Targets

- Target
  
  VisualStudioSetup.exe
- Size
  
  4.2MB
- MD5
  
  b8cca496dc674c18d8f9b7b205c7d339
- SHA1
  
  62c57e3074cbd4b2f2278d412bd0bfac8d996eb7
- SHA256
  
  68e6af8e455b2804eed7fb34f68f173ba6d95adfe1f8814a4fc6e7bbe4cd8860
- SHA512
  
  8a90a406a816477989638e108de369da8e57479b83b7c556789d971681f9a112867e0efa915883103805246880b4e84fec2c90f57eb89c9a135e951f27022b3c
- SSDEEP
  
  98304:JEbiSkYmlBsMftfJaBjAgylspFqTLGW+Nu+GHtJgRU4eZp:WlmlBs+tfUBjAnupFqTLgNh+izeZp
Score

5^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2