Overview

overview

7

Static

static

1

TextNow - ...er.exe

windows7-x64

3

TextNow - ...er.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    TextNow - Unlimited Texts + Calls Installer.exe

  • Size

    1.0MB

  • Sample

    241121-qsz7estajr

  • MD5

    e81b51fd39fece8891f96ec88507fdb9

  • SHA1

    d2e77d69f0b1f6e156b3f44acdfd26bd65effc3f

  • SHA256

    8eb5e7a9d34ac943613326c6928a72739b42528c868ac25b94a9925e99fd2743

  • SHA512

    b5c793f5dca36753034f3bfb9a2762294bbf0a8d78de4089e753d9ed124f3cd2b0107914d20c9ebc95088330ab9e8d9f6cb85fb92bae6c7400905c661a3fa478

  • SSDEEP

    12288:qvUGQWpy+Tac0RDffXJjyYpcyoNHSy5viczPESsQ3BaE32VfXJjyYpz:lGQB+2DR7BWYpcyo44u0aPVBWYpz

Score
7/10
discovery

Malware Config

Targets

    • Target

      TextNow - Unlimited Texts + Calls Installer.exe

    • Size

      1.0MB

    • MD5

      e81b51fd39fece8891f96ec88507fdb9

    • SHA1

      d2e77d69f0b1f6e156b3f44acdfd26bd65effc3f

    • SHA256

      8eb5e7a9d34ac943613326c6928a72739b42528c868ac25b94a9925e99fd2743

    • SHA512

      b5c793f5dca36753034f3bfb9a2762294bbf0a8d78de4089e753d9ed124f3cd2b0107914d20c9ebc95088330ab9e8d9f6cb85fb92bae6c7400905c661a3fa478

    • SSDEEP

      12288:qvUGQWpy+Tac0RDffXJjyYpcyoNHSy5viczPESsQ3BaE32VfXJjyYpz:lGQB+2DR7BWYpcyo44u0aPVBWYpz

    Score
    7/10
    discovery

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks