Overview

overview

8

Static

static

8

SecuriteIn...18.exe

windows10-2004_x64

8

Resubmissions

20-05-2022 09:17

220520-k9cjsshfd2 8

20-05-2022 08:00

220520-jvzv4sbhgn 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    SecuriteInfo.com.Trojan.DownLoader44.59135.30418.14825

  • Size

    4.8MB

  • Sample

    220520-k9cjsshfd2

  • MD5

    b4aa27a1339c69d99121a4fe4fac94f7

  • SHA1

    72cd9ebfd59e9c5a45c22dd5f6aa8d4cb9ba9d26

  • SHA256

    a738f6016086abdd2824b797ec67feee3bc39d52b0b0ae94bd1384c58ed3d5d6

  • SHA512

    3550565464695370bdc761327eea1502e523a8b5f5780c6d7942e2be480d40a262897009c6e459110ac0b146ad05f69f9c7d099ad88eaca39975907f95d3e184

Score
8/10
upx

Malware Config

Targets

    • Target

      SecuriteInfo.com.Trojan.DownLoader44.59135.30418.14825

    • Size

      4.8MB

    • MD5

      b4aa27a1339c69d99121a4fe4fac94f7

    • SHA1

      72cd9ebfd59e9c5a45c22dd5f6aa8d4cb9ba9d26

    • SHA256

      a738f6016086abdd2824b797ec67feee3bc39d52b0b0ae94bd1384c58ed3d5d6

    • SHA512

      3550565464695370bdc761327eea1502e523a8b5f5780c6d7942e2be480d40a262897009c6e459110ac0b146ad05f69f9c7d099ad88eaca39975907f95d3e184

    Score
    8/10
    upx

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Legitimate hosting services abused for malware hosting/C2

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks