General
-
Target
Start11v2-setup.exe
-
Size
50.9MB
-
Sample
241109-xc8l7azdpf
-
MD5
3ca5689b6b4ffb7972893da753141494
-
SHA1
d6b793cc07a16985eca137675de0e665fa1c0825
-
SHA256
48cb26764e09d08a2303a2b72f02400c4c45d336ce286e1030b6f4ac9d686702
-
SHA512
6986960ee3ba9036d553785d89d2e65aa8cad26ac402bf7f3b7ef65cbd741c983ea2e54aeeee306d734ed01bcc938f8f034e95ba9fee4a6226c53d28250e9d38
-
SSDEEP
786432:LP4KRzzbDAb89drMj4UtY4doZrDxfmv57bbhtU5tbbhJbsOuPB3Y3:VzzIoHrMj1Po1DhW7bs5tbbsOuPB6
Static task
static1
Behavioral task
behavioral1
Sample
Start11v2-setup.exe
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
Start11v2-setup.exe
-
Size
50.9MB
-
MD5
3ca5689b6b4ffb7972893da753141494
-
SHA1
d6b793cc07a16985eca137675de0e665fa1c0825
-
SHA256
48cb26764e09d08a2303a2b72f02400c4c45d336ce286e1030b6f4ac9d686702
-
SHA512
6986960ee3ba9036d553785d89d2e65aa8cad26ac402bf7f3b7ef65cbd741c983ea2e54aeeee306d734ed01bcc938f8f034e95ba9fee4a6226c53d28250e9d38
-
SSDEEP
786432:LP4KRzzbDAb89drMj4UtY4doZrDxfmv57bbhtU5tbbhJbsOuPB3Y3:VzzIoHrMj1Po1DhW7bs5tbbsOuPB6
Score5/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Event Triggered Execution: Component Object Model Hijacking
Adversaries may establish persistence by executing malicious content triggered by hijacked references to Component Object Model (COM) objects.
-
MITRE ATT&CK Enterprise v15
Persistence
Event Triggered Execution
2Change Default File Association
1Component Object Model Hijacking
1Privilege Escalation
Event Triggered Execution
2Change Default File Association
1Component Object Model Hijacking
1Defense Evasion
Modify Registry
3Subvert Trust Controls
1Install Root Certificate
1