15f1f8fbdb48ec3a12e972f81b8658a2215e0a494387bcc8ff32188bcb2ead30 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Bitsonic_Keyzone_Classic_x64.exe
Size

302.8MB
Sample

240928-hw58vavfph
MD5

68109145e814df7c07191350751da93c
SHA1

6dc757a0aa50818e91e9f8c9f1b81630fa2c321f
SHA256

15f1f8fbdb48ec3a12e972f81b8658a2215e0a494387bcc8ff32188bcb2ead30
SHA512

f367bf963d5e901a0e2181814843d889359308fafcfa08dd1baeebac060526a478073829a531c4b6166b46616d7c0e2910b0a4c9238fbfb427b850ff58957f52
SSDEEP

6291456:nebh/a6eN75p8nvmFF8b8t7dSaIzv7IfM/52vigIbYuPIu:nahPI3yqBt7caIz/RNyu

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  Bitsonic_Keyzone_Classic_x64.exe
- Size
  
  302.8MB
- MD5
  
  68109145e814df7c07191350751da93c
- SHA1
  
  6dc757a0aa50818e91e9f8c9f1b81630fa2c321f
- SHA256
  
  15f1f8fbdb48ec3a12e972f81b8658a2215e0a494387bcc8ff32188bcb2ead30
- SHA512
  
  f367bf963d5e901a0e2181814843d889359308fafcfa08dd1baeebac060526a478073829a531c4b6166b46616d7c0e2910b0a4c9238fbfb427b850ff58957f52
- SSDEEP
  
  6291456:nebh/a6eN75p8nvmFF8b8t7dSaIzv7IfM/52vigIbYuPIu:nahPI3yqBt7caIz/RNyu
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2