upatre | 7393f83f5d24d5c64e2c0298133f5052404250dfda167591019057b574ed8d1b | Triage

Submit
Reports

Overview

overview

Static

static

7393f83f5d...1b.exe

windows7_x64

7393f83f5d...1b.exe

windows10-2004_x64

Resubmissions

07-12-2023 12:48

231207-p1sxmsah37 10

06-06-2022 17:10

220606-vp5pysecgn 10

Sharing

General

Target

7393f83f5d24d5c64e2c0298133f5052404250dfda167591019057b574ed8d1b
Size

6KB
Sample

220606-vp5pysecgn
MD5

dea0e56e4ce2fafb80ace3b818eb44fe
SHA1

ce252a12317c0d0cac83b87a76db375baf05cb94
SHA256

7393f83f5d24d5c64e2c0298133f5052404250dfda167591019057b574ed8d1b
SHA512

d04ba2daa722bc929628605cc0dfa4bc2ae34e485d13685a8f8a5747754c88915f32621363955640cac49c890ac01136aef7444d3fd62ab26be048ebae50e4ee

Score

10^/10

upatre downloader suricata

Static task

static1

Behavioral task

behavioral1

Sample

7393f83f5d24d5c64e2c0298133f5052404250dfda167591019057b574ed8d1b.exe

Resource

win7-20220414-en

upatre downloader suricata

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

7393f83f5d24d5c64e2c0298133f5052404250dfda167591019057b574ed8d1b.exe

Resource

win10v2004-20220414-en

upatre downloader suricata

windows10-2004_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  7393f83f5d24d5c64e2c0298133f5052404250dfda167591019057b574ed8d1b
- Size
  
  6KB
- MD5
  
  dea0e56e4ce2fafb80ace3b818eb44fe
- SHA1
  
  ce252a12317c0d0cac83b87a76db375baf05cb94
- SHA256
  
  7393f83f5d24d5c64e2c0298133f5052404250dfda167591019057b574ed8d1b
- SHA512
  
  d04ba2daa722bc929628605cc0dfa4bc2ae34e485d13685a8f8a5747754c88915f32621363955640cac49c890ac01136aef7444d3fd62ab26be048ebae50e4ee
Score

10^/10

upatre downloader suricata
- Upatre
  Upatre is a generic malware downloader.
  downloader upatre
- suricata: ET MALWARE Common Upatre Header Structure 2
  suricata: ET MALWARE Common Upatre Header Structure 2
  suricata
- suricata: ET MALWARE Upatre Common URI Struct Dec 01 2014
  suricata: ET MALWARE Upatre Common URI Struct Dec 01 2014
  suricata
- suricata: ET MALWARE Upatre Common URI Struct Feb 12 2015
  suricata: ET MALWARE Upatre Common URI Struct Feb 12 2015
  suricata
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

upatredownloadersuricata

behavioral2

upatredownloadersuricata

© 2018-2024

Terms | Privacy