hxxps://img1[.]wsimg[.]com/blobby/go/47674b18-8c7e-4944-9aee-d7f174d6d950/downloads/d474aa31-7302-4c9b-a28d-ce2e24568a19/malversedanger[.]zip?ver=1732036917645

Resubmissions

19/11/2024, 19:41

241119-yektks1kay 3

19/11/2024, 19:41

241119-yedehawldj 1

19/11/2024, 19:40

241119-ydzakssalk 8

19/11/2024, 19:37

241119-yb36ra1hqj 8

Sharing

Copy URL

Twitter E-mail

General

Target

https://img1.wsimg.com/blobby/go/47674b18-8c7e-4944-9aee-d7f174d6d950/downloads/d474aa31-7302-4c9b-a28d-ce2e24568a19/malversedanger.zip?ver=1732036917645
Sample

241119-yb36ra1hqj

Score

8^/10

discovery evasion

Malware Config

Targets

- Target
  
  https://img1.wsimg.com/blobby/go/47674b18-8c7e-4944-9aee-d7f174d6d950/downloads/d474aa31-7302-4c9b-a28d-ce2e24568a19/malversedanger.zip?ver=1732036917645
Score

8^/10

discovery evasion
- Disables Task Manager via registry modification
  evasion
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Drops file in System32 directory
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

T1012

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Resubmissions

Sharing

General

Malware Config

Targets

Disables Task Manager via registry modification

Checks computer location settings

Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks

static1

urlscan1

behavioral1