Overview

overview

10

Static

static

ac1ab6da76...92.exe

windows7-x64

1

ac1ab6da76...92.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ac1ab6da7638a9455fe932047d70177fbf44e17bfe351ffdf905107695526592

  • Size

    36KB

  • Sample

    221023-vfhh3abdfp

  • MD5

    a654921a172f96b4c8a076e5c1d42381

  • SHA1

    32532495889a9f95f0c024d95b1b5729d74e1e26

  • SHA256

    ac1ab6da7638a9455fe932047d70177fbf44e17bfe351ffdf905107695526592

  • SHA512

    c084c2d80bde7a68ec6879b65a3956cd2830e01dcb7c58e4d1c704aa971aaffa408e2daf54260d8205dc007ab9462bfdc532996d8fd3cf4c2659285834a98a22

  • SSDEEP

    768:kf1Y9RRw/dUT6vurGd/pkUOyGAv+rh95kRBDMIpDh:GY9jw/dUT62rGdiUOWWrNLC

Score
10/10
upatredownloader

Malware Config

Targets

    • Target

      ac1ab6da7638a9455fe932047d70177fbf44e17bfe351ffdf905107695526592

    • Size

      36KB

    • MD5

      a654921a172f96b4c8a076e5c1d42381

    • SHA1

      32532495889a9f95f0c024d95b1b5729d74e1e26

    • SHA256

      ac1ab6da7638a9455fe932047d70177fbf44e17bfe351ffdf905107695526592

    • SHA512

      c084c2d80bde7a68ec6879b65a3956cd2830e01dcb7c58e4d1c704aa971aaffa408e2daf54260d8205dc007ab9462bfdc532996d8fd3cf4c2659285834a98a22

    • SSDEEP

      768:kf1Y9RRw/dUT6vurGd/pkUOyGAv+rh95kRBDMIpDh:GY9jw/dUT62rGdiUOWWrNLC

    Score
    10/10
    upatredownloader

    • Upatre

      Upatre is a generic malware downloader.

      downloaderupatre

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks