Overview

overview

8

Static

static

8

a8b833fcd2...db.exe

windows7-x64

8

a8b833fcd2...db.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a8b833fcd20c2a7d0c6b91cc9ed15034578ebb75c908437298770d36c7ddc4db

  • Size

    196KB

  • Sample

    221021-f5efdadfen

  • MD5

    4e36a511710b4748030e12d44d9c7030

  • SHA1

    45108471c8b36c34065c3e4e2ba54c85b31aff79

  • SHA256

    a8b833fcd20c2a7d0c6b91cc9ed15034578ebb75c908437298770d36c7ddc4db

  • SHA512

    2f843f31a242fb5b1fd8ad71baac587fd2888b854041f46c0b7f7e6dd55342119af18eb5475688f099839743c65df9c6bcf3b8ea2de043a2d76afdb812f2da5a

  • SSDEEP

    6144:GtdB9WLXi4PCJKxQFpfbZzKwVIxG1HK8:GtdUy4K5nuYHK

Score
8/10
upx

Malware Config

Targets

    • Target

      a8b833fcd20c2a7d0c6b91cc9ed15034578ebb75c908437298770d36c7ddc4db

    • Size

      196KB

    • MD5

      4e36a511710b4748030e12d44d9c7030

    • SHA1

      45108471c8b36c34065c3e4e2ba54c85b31aff79

    • SHA256

      a8b833fcd20c2a7d0c6b91cc9ed15034578ebb75c908437298770d36c7ddc4db

    • SHA512

      2f843f31a242fb5b1fd8ad71baac587fd2888b854041f46c0b7f7e6dd55342119af18eb5475688f099839743c65df9c6bcf3b8ea2de043a2d76afdb812f2da5a

    • SSDEEP

      6144:GtdB9WLXi4PCJKxQFpfbZzKwVIxG1HK8:GtdUy4K5nuYHK

    Score
    8/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks