upatre | aba12db92777aa19566fe5fd628decddbc537397e73d02848b6a1077d6908491 | Triage

Sharing

General

Target

aba12db92777aa19566fe5fd628decddbc537397e73d02848b6a1077d6908491
Size

196KB
Sample

221023-vakfgabddl
MD5

de2f8497fafb030217bfb585693fb78c
SHA1

8fc37756ca48b73ab3d4aca040fa51f6f4e67cad
SHA256

aba12db92777aa19566fe5fd628decddbc537397e73d02848b6a1077d6908491
SHA512

ca27e5fba6b7dbc21b1a9fdf61677de88152b18e52f525d6e5c02f6fddce87dc61bad72863d87a9a6605e49f0f6024e5d1e2ac1b5f9e53dd40e76b6e10a57fbe
SSDEEP

768:kf1Y9RRw/dUT6vurGd/pkUOyGAv+rZEMfJ:GY9jw/dUT62rGdiUOWWrZE6J

Score

10^/10

upatre downloader

Malware Config

Targets

- Target
  
  aba12db92777aa19566fe5fd628decddbc537397e73d02848b6a1077d6908491
- Size
  
  196KB
- MD5
  
  de2f8497fafb030217bfb585693fb78c
- SHA1
  
  8fc37756ca48b73ab3d4aca040fa51f6f4e67cad
- SHA256
  
  aba12db92777aa19566fe5fd628decddbc537397e73d02848b6a1077d6908491
- SHA512
  
  ca27e5fba6b7dbc21b1a9fdf61677de88152b18e52f525d6e5c02f6fddce87dc61bad72863d87a9a6605e49f0f6024e5d1e2ac1b5f9e53dd40e76b6e10a57fbe
- SSDEEP
  
  768:kf1Y9RRw/dUT6vurGd/pkUOyGAv+rZEMfJ:GY9jw/dUT62rGdiUOWWrZE6J
Score

10^/10

upatre downloader
- Upatre
  Upatre is a generic malware downloader.
  downloader upatre
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

upatredownloader