Overview

overview

10

Static

static

8

3104cd2bc2...bf.exe

windows7-x64

8

3104cd2bc2...bf.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3104cd2bc2beb10ec0d77eee956588ac28ef7fcf5b6ee765ae95eeea142e13bf

  • Size

    222KB

  • Sample

    221030-bvs4kagaek

  • MD5

    92aea1697cfa9bca12c6a4c78105c240

  • SHA1

    c07277ae6bd5b0bc6b08a1254650ccb6be9f9b1d

  • SHA256

    3104cd2bc2beb10ec0d77eee956588ac28ef7fcf5b6ee765ae95eeea142e13bf

  • SHA512

    d8165e4aa51d41501db41fe44441570a72c8241d04440ed06c0c04cb6b5bbcd9bcbe25e11b74eabda0379c3ced9d2afa417207499dd503b8be08bb4f52a47470

  • SSDEEP

    3072:8mi+/dgy5Ef8doutaZggjv4IUhinqiczW4R5486:8tSEf+oSar4NqczW4R548

Score
10/10
evasionupx

Malware Config

Targets

    • Target

      3104cd2bc2beb10ec0d77eee956588ac28ef7fcf5b6ee765ae95eeea142e13bf

    • Size

      222KB

    • MD5

      92aea1697cfa9bca12c6a4c78105c240

    • SHA1

      c07277ae6bd5b0bc6b08a1254650ccb6be9f9b1d

    • SHA256

      3104cd2bc2beb10ec0d77eee956588ac28ef7fcf5b6ee765ae95eeea142e13bf

    • SHA512

      d8165e4aa51d41501db41fe44441570a72c8241d04440ed06c0c04cb6b5bbcd9bcbe25e11b74eabda0379c3ced9d2afa417207499dd503b8be08bb4f52a47470

    • SSDEEP

      3072:8mi+/dgy5Ef8doutaZggjv4IUhinqiczW4R5486:8tSEf+oSar4NqczW4R548

    Score
    10/10
    upxevasion

    • Modifies firewall policy service

      evasion

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks