Overview

overview

10

Static

static

19310dc6ef...76.exe

windows7_x64

10

19310dc6ef...76.exe

windows10-2004_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    19310dc6efef69446d55c4e3c91057ffa7645f4bf705a81be0b2069487952176

  • Size

    29KB

  • Sample

    220214-j7vrxsggh5

  • MD5

    1fa46b0e122c210a6dedfbd9e4b73f4c

  • SHA1

    9f9a8a087388416dbd84ab93371bcd38bd617d3d

  • SHA256

    19310dc6efef69446d55c4e3c91057ffa7645f4bf705a81be0b2069487952176

  • SHA512

    7e1587148fb0b1435d87323baa476956decaf130d0689ea5bf9241571b99850f361ac67824ba213bd62b2ab98331f5e8ecba0947ea3ba0b5ea8befbe76c7f9bc

Score
10/10
upatredownloader

Malware Config

Targets

    • Target

      19310dc6efef69446d55c4e3c91057ffa7645f4bf705a81be0b2069487952176

    • Size

      29KB

    • MD5

      1fa46b0e122c210a6dedfbd9e4b73f4c

    • SHA1

      9f9a8a087388416dbd84ab93371bcd38bd617d3d

    • SHA256

      19310dc6efef69446d55c4e3c91057ffa7645f4bf705a81be0b2069487952176

    • SHA512

      7e1587148fb0b1435d87323baa476956decaf130d0689ea5bf9241571b99850f361ac67824ba213bd62b2ab98331f5e8ecba0947ea3ba0b5ea8befbe76c7f9bc

    Score
    10/10
    upatredownloader

    • Upatre

      Upatre is a generic malware downloader.

      downloaderupatre

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks