Overview

overview

8

Static

static

8

6491a7a59b...e4.exe

windows7-x64

8

6491a7a59b...e4.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6491a7a59b090603d7fb9f14fbc528941f61d8d590ce71a5cdf6c0775045a1e4

  • Size

    2.9MB

  • Sample

    221002-s62craeedq

  • MD5

    7a9aa5de16ea6f587eed218c3ccc7b2d

  • SHA1

    16fe7f27e6e2dbf33d1ddb76d7493d4e766da85e

  • SHA256

    6491a7a59b090603d7fb9f14fbc528941f61d8d590ce71a5cdf6c0775045a1e4

  • SHA512

    6eeb64e11fea1f613f61d3950eaa2ac80487bf5502d956982d0e16f0e47758ac921bb98260a229162ad27e353ede1423b4ef25882a252b214147b2f303a42991

  • SSDEEP

    49152:1RSRmR4RSRmRPRSRmRLRSRmRxRSRmRZRSRmRYRSRmRCRSRmRYRSRmRhRSRmR:3EwCEwpEwNEwrEwjEwiEw0EwiEwbEw

Score
8/10
upx

Malware Config

Targets

    • Target

      6491a7a59b090603d7fb9f14fbc528941f61d8d590ce71a5cdf6c0775045a1e4

    • Size

      2.9MB

    • MD5

      7a9aa5de16ea6f587eed218c3ccc7b2d

    • SHA1

      16fe7f27e6e2dbf33d1ddb76d7493d4e766da85e

    • SHA256

      6491a7a59b090603d7fb9f14fbc528941f61d8d590ce71a5cdf6c0775045a1e4

    • SHA512

      6eeb64e11fea1f613f61d3950eaa2ac80487bf5502d956982d0e16f0e47758ac921bb98260a229162ad27e353ede1423b4ef25882a252b214147b2f303a42991

    • SSDEEP

      49152:1RSRmR4RSRmRPRSRmRLRSRmRxRSRmRZRSRmRYRSRmRCRSRmRYRSRmRhRSRmR:3EwCEwpEwNEwrEwjEwiEw0EwiEwbEw

    Score
    8/10
    upx

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks