General

  • Target

    0a2e66b63eb4780474fb5c2cf880ac8a5c21e5ae7e736e8fbac7d91b4d437f20.bin

  • Size

    29KB

  • Sample

    220610-b8at5secap

  • MD5

    0e9fdc3bb9d9370b5c11a9c8da0c12cd

  • SHA1

    64d82dce251467dfaade5cb3c5863767cca6f834

  • SHA256

    0a2e66b63eb4780474fb5c2cf880ac8a5c21e5ae7e736e8fbac7d91b4d437f20

  • SHA512

    dcff742f5efc89e7f662ca9f8eea610fd6264796be08d1dd93881f19004493daf04e970d3ea278a32f4dd9a3eca1908d2ccb646977b8f55ad8d5a1844b614da2

Score
10/10

Malware Config

Targets

    • Target

      0a2e66b63eb4780474fb5c2cf880ac8a5c21e5ae7e736e8fbac7d91b4d437f20.bin

    • Size

      29KB

    • MD5

      0e9fdc3bb9d9370b5c11a9c8da0c12cd

    • SHA1

      64d82dce251467dfaade5cb3c5863767cca6f834

    • SHA256

      0a2e66b63eb4780474fb5c2cf880ac8a5c21e5ae7e736e8fbac7d91b4d437f20

    • SHA512

      dcff742f5efc89e7f662ca9f8eea610fd6264796be08d1dd93881f19004493daf04e970d3ea278a32f4dd9a3eca1908d2ccb646977b8f55ad8d5a1844b614da2

    Score
    10/10
    • Upatre

      Upatre is a generic malware downloader.

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

MITRE ATT&CK Matrix ATT&CK v6

Discovery

Query Registry

1
T1012

System Information Discovery

2
T1082

Tasks