3fb7315786ca0509d9474f42492805fff4374cd46fbaee960ceb96686798e6cd

Analysis

max time kernel
148s
max time network
150s
platform
windows10-2004_x64
resource
win10v2004-20241007-en
resource tags

arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
submitted
24-01-2025 09:06

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Spoofer/run after cleaner/Monotone-HWID-Spoofer-0.0.1/GetInput.exe
Size

3KB
MD5

2ba62ae6f88b11d0e262af35d8db8ca9
SHA1

69d4ccb476cfebdf572134fead42a12750580e4b
SHA256

3f5c64717a0092ae214154a730e96e2e56921be2e3f1121a3e98b1ba84627665
SHA512

a984212245e401b68872623437a512898a00d71cca7d7b0aa6733663020cae92d50ce1ae3abafbd811542a77e72c8b6a5755492c07d6ddeb2642d908142c2ccb

Score

3^/10

discovery

Malware Config

Signatures

System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

discovery

System Language Discovery

T1614.001

description	ioc	Process
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	GetInput.exe

C:\Users\Admin\AppData\Local\Temp\Spoofer\run after cleaner\Monotone-HWID-Spoofer-0.0.1\GetInput.exe
"C:\Users\Admin\AppData\Local\Temp\Spoofer\run after cleaner\Monotone-HWID-Spoofer-0.0.1\GetInput.exe"
1⤵
- System Location Discovery: System Language Discovery
PID:4532

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads