Overview

overview

9

Static

static

cfdfd7e3df...57.exe

windows7-x64

9

cfdfd7e3df...57.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    cfdfd7e3dffa90de103ebdb9f18faaa960f0e7012eb9dfb5b4ff35f5ac253957

  • Size

    44KB

  • Sample

    220918-24qmxaeah8

  • MD5

    47ecc8802bb76cc2d1066f4c023c3b72

  • SHA1

    e0c5b6100975cf02aade44a5da746f9a460752ad

  • SHA256

    cfdfd7e3dffa90de103ebdb9f18faaa960f0e7012eb9dfb5b4ff35f5ac253957

  • SHA512

    d8749b231d86e5518e2a93892484bb375baacec64b138b669a6aa68bfe938be54ead4704e094c1d254459b8e6cf5eb69cc6b07c0880ff1630fb098b60d3f47dd

  • SSDEEP

    384:nDYnPPUNkybVwf/uPy5FFwTsFXE2sqEFxIb9HY7QsRem2dSst6BoYPHgYwhoSk6:k3GkybVwHyyVMsFST89HY7QsYdkfYbl

Score
9/10
upx

Malware Config

Targets

    • Target

      cfdfd7e3dffa90de103ebdb9f18faaa960f0e7012eb9dfb5b4ff35f5ac253957

    • Size

      44KB

    • MD5

      47ecc8802bb76cc2d1066f4c023c3b72

    • SHA1

      e0c5b6100975cf02aade44a5da746f9a460752ad

    • SHA256

      cfdfd7e3dffa90de103ebdb9f18faaa960f0e7012eb9dfb5b4ff35f5ac253957

    • SHA512

      d8749b231d86e5518e2a93892484bb375baacec64b138b669a6aa68bfe938be54ead4704e094c1d254459b8e6cf5eb69cc6b07c0880ff1630fb098b60d3f47dd

    • SSDEEP

      384:nDYnPPUNkybVwf/uPy5FFwTsFXE2sqEFxIb9HY7QsRem2dSst6BoYPHgYwhoSk6:k3GkybVwHyyVMsFST89HY7QsYdkfYbl

    Score
    9/10
    upx

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks