Overview

overview

10

Static

static

9d79bd73e4...b3.exe

windows7-x64

1

9d79bd73e4...b3.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9d79bd73e45c4d782bcd4fc499786c34c7cd861edad0539fa719f1ca32205ab3

  • Size

    39KB

  • Sample

    221023-qgwd4aadf7

  • MD5

    47071bb058ab1d1d694466499468b632

  • SHA1

    c46ecf2a07422ccf024e2852ff5aef52067fabdb

  • SHA256

    9d79bd73e45c4d782bcd4fc499786c34c7cd861edad0539fa719f1ca32205ab3

  • SHA512

    067a31f7506eddbdd8d662aba96793cdd8f9c3d57a2aac53a0d14f9ddf6ab286571254a5719162556e7c235ad71c971c5e56c6ab475e4f248ddada0bdb67d2c2

  • SSDEEP

    768:kf1Y9RRw/dUT6vurGd/pkUOyGAv+rh95k5mw2:GY9jw/dUT62rGdiUOWWrNmk

Score
10/10
upatredownloader

Malware Config

Targets

    • Target

      9d79bd73e45c4d782bcd4fc499786c34c7cd861edad0539fa719f1ca32205ab3

    • Size

      39KB

    • MD5

      47071bb058ab1d1d694466499468b632

    • SHA1

      c46ecf2a07422ccf024e2852ff5aef52067fabdb

    • SHA256

      9d79bd73e45c4d782bcd4fc499786c34c7cd861edad0539fa719f1ca32205ab3

    • SHA512

      067a31f7506eddbdd8d662aba96793cdd8f9c3d57a2aac53a0d14f9ddf6ab286571254a5719162556e7c235ad71c971c5e56c6ab475e4f248ddada0bdb67d2c2

    • SSDEEP

      768:kf1Y9RRw/dUT6vurGd/pkUOyGAv+rh95k5mw2:GY9jw/dUT62rGdiUOWWrNmk

    Score
    10/10
    upatredownloader

    • Upatre

      Upatre is a generic malware downloader.

      downloaderupatre

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks