Overview

overview

10

Static

static

a6218fa6d4...ca.exe

windows7-x64

1

a6218fa6d4...ca.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a6218fa6d4d2ff382ca803385ae5a66e7850cfaeb55e3f8fc29a97b5fbf6deca

  • Size

    41KB

  • Sample

    221023-srkfpabagn

  • MD5

    a32cdeb0d254617e7fa6151d666df77d

  • SHA1

    05f988c178bd6d6efa31881ebb93f44844205947

  • SHA256

    a6218fa6d4d2ff382ca803385ae5a66e7850cfaeb55e3f8fc29a97b5fbf6deca

  • SHA512

    8382d96e678e699ee613db2c12ef26c8c069308ecd71f4ea294f72a522f4e6445f28a0714270e81f0bacd9e3a6ae9386d1a15a900ed8c650398c7c8fab45e4f2

  • SSDEEP

    768:kf1Y9RRw/dUT6vurGd/pkUOyGAv+rh95k5mwFW1S7MA0:GY9jw/dUT62rGdiUOWWrNmLWMAA0

Score
10/10
upatredownloader

Malware Config

Targets

    • Target

      a6218fa6d4d2ff382ca803385ae5a66e7850cfaeb55e3f8fc29a97b5fbf6deca

    • Size

      41KB

    • MD5

      a32cdeb0d254617e7fa6151d666df77d

    • SHA1

      05f988c178bd6d6efa31881ebb93f44844205947

    • SHA256

      a6218fa6d4d2ff382ca803385ae5a66e7850cfaeb55e3f8fc29a97b5fbf6deca

    • SHA512

      8382d96e678e699ee613db2c12ef26c8c069308ecd71f4ea294f72a522f4e6445f28a0714270e81f0bacd9e3a6ae9386d1a15a900ed8c650398c7c8fab45e4f2

    • SSDEEP

      768:kf1Y9RRw/dUT6vurGd/pkUOyGAv+rh95k5mwFW1S7MA0:GY9jw/dUT62rGdiUOWWrNmLWMAA0

    Score
    10/10
    upatredownloader

    • Upatre

      Upatre is a generic malware downloader.

      downloaderupatre

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks