upatre | a79092a641203fdf5140059754dd52fb150f8da04d808eee9951f507c4a02d1e | Triage

Sharing

General

Target

a79092a641203fdf5140059754dd52fb150f8da04d808eee9951f507c4a02d1e
Size

41KB
Sample

221023-s6qagsbaf2
MD5

12b673e9f50f83598be1625fdb4066cd
SHA1

21a66a0ace1a1978b37fda6496fde445d712ff0a
SHA256

a79092a641203fdf5140059754dd52fb150f8da04d808eee9951f507c4a02d1e
SHA512

d0bdacd9e9a82d79e0813278a46a62b0cc19629b11446a5913f498638ec31bfe723460d0242c12db8a74ea8245989730f17caed0edb686f5280fd44254ebc852
SSDEEP

768:kf1Y9RRw/dUT6vurGd/pkUOyGAv+rh95k5mwFW1S7MTIQ/0:GY9jw/dUT62rGdiUOWWrNmLWMA8j

Score

10^/10

upatre downloader

Malware Config

Targets

- Target
  
  a79092a641203fdf5140059754dd52fb150f8da04d808eee9951f507c4a02d1e
- Size
  
  41KB
- MD5
  
  12b673e9f50f83598be1625fdb4066cd
- SHA1
  
  21a66a0ace1a1978b37fda6496fde445d712ff0a
- SHA256
  
  a79092a641203fdf5140059754dd52fb150f8da04d808eee9951f507c4a02d1e
- SHA512
  
  d0bdacd9e9a82d79e0813278a46a62b0cc19629b11446a5913f498638ec31bfe723460d0242c12db8a74ea8245989730f17caed0edb686f5280fd44254ebc852
- SSDEEP
  
  768:kf1Y9RRw/dUT6vurGd/pkUOyGAv+rh95k5mwFW1S7MTIQ/0:GY9jw/dUT62rGdiUOWWrNmLWMA8j
Score

10^/10

upatre downloader
- Upatre
  Upatre is a generic malware downloader.
  downloader upatre
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

upatredownloader