Overview

overview

7

Static

static

1

st-setup-1.8.16.exe

windows10-2004-x64

7

st-setup-1.8.16.exe

windows11-21h2-x64

7

Resubmissions

15/04/2025, 14:24

250415-rqzcsazse1 7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    st-setup-1.8.16.exe

  • Size

    8.2MB

  • Sample

    250415-rqzcsazse1

  • MD5

    9c42f5ccae30afc9c70c924d543924f8

  • SHA1

    4e3c555cfee82d23acfdda4754c0870f455156e8

  • SHA256

    80b6573208f2179c97ce64ff731269e349a07a3969c1198bf5a9092c5a01555c

  • SHA512

    51d5c449ce3070a2c080a81d14af74e1c5621e41057fd4c311aee1888322879b6fadef1bbdbd370bfaa00dd50a87df2d73943f96aff3ae5b1d4708505d8a6707

  • SSDEEP

    196608:k+1Siv6sNQ7agI/2FLDZnjT/K9skdRNlie1hCjHDlCMq:kliQhRVNCmWp7UHDlC

Score
7/10
steamdiscoverypersistencephishing

Malware Config

Targets

    • Target

      st-setup-1.8.16.exe

    • Size

      8.2MB

    • MD5

      9c42f5ccae30afc9c70c924d543924f8

    • SHA1

      4e3c555cfee82d23acfdda4754c0870f455156e8

    • SHA256

      80b6573208f2179c97ce64ff731269e349a07a3969c1198bf5a9092c5a01555c

    • SHA512

      51d5c449ce3070a2c080a81d14af74e1c5621e41057fd4c311aee1888322879b6fadef1bbdbd370bfaa00dd50a87df2d73943f96aff3ae5b1d4708505d8a6707

    • SSDEEP

      196608:k+1Siv6sNQ7agI/2FLDZnjT/K9skdRNlie1hCjHDlCMq:kliQhRVNCmWp7UHDlC

    Score
    7/10
    steamdiscoverypersistencephishing

    • Modifies file permissions

      discovery

    • Adds Run key to start application

      persistence

    • Downloads MZ/PE file

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Detected potential entity reuse from brand STEAM.

      phishingsteam
    behavioral1behavioral2

MITRE ATT&CK Enterprise v16

Tasks