Overview

overview

7

Static

static

3

setup.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    setup.exe

  • Size

    5.9MB

  • Sample

    241009-wkz5cavdng

  • MD5

    3a04464985dda2ad54188d16068db494

  • SHA1

    be3db2e0c7122475dae8110e220603acec8392c7

  • SHA256

    10702b6a1ec7ec0f460a07e7b4e6d71a13e2a184d64c42f19d1861325f057f25

  • SHA512

    2190ad7b4d9c8bc8e74d6b3f7867289ef2353f3bc4739fdfd206d0c65451480e8a38051114794a4b8a7de027203f2f307bfb014423644f0786ff313bbbe2d6cd

  • SSDEEP

    98304:XvccAZPL4N3WlkqL6w9twz+IaZ7AMjwEQ6PCKYEQJpM3Oott1CuynWI4N:XvtAZj41WJ6pzqZjwT6p14pwOY3HZ

Score
7/10
discovery

Malware Config

Targets

    • Target

      setup.exe

    • Size

      5.9MB

    • MD5

      3a04464985dda2ad54188d16068db494

    • SHA1

      be3db2e0c7122475dae8110e220603acec8392c7

    • SHA256

      10702b6a1ec7ec0f460a07e7b4e6d71a13e2a184d64c42f19d1861325f057f25

    • SHA512

      2190ad7b4d9c8bc8e74d6b3f7867289ef2353f3bc4739fdfd206d0c65451480e8a38051114794a4b8a7de027203f2f307bfb014423644f0786ff313bbbe2d6cd

    • SSDEEP

      98304:XvccAZPL4N3WlkqL6w9twz+IaZ7AMjwEQ6PCKYEQJpM3Oott1CuynWI4N:XvtAZj41WJ6pzqZjwT6p14pwOY3HZ

    Score
    7/10
    discovery

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks