Overview

overview

8

Static

static

091ff4e606...bc.exe

windows7-x64

8

091ff4e606...bc.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    091ff4e606326d533595650b725d004b092fe5e0d545bad9a9ce319e567e95bc

  • Size

    306KB

  • Sample

    221121-3q1fmabg78

  • MD5

    dd5ab841169a83dcec8721d49a459cfc

  • SHA1

    2360ae888d3fbdb9ec4e3b655c9954c223d16e1a

  • SHA256

    091ff4e606326d533595650b725d004b092fe5e0d545bad9a9ce319e567e95bc

  • SHA512

    ce8dbf8b8fc5d5e95a5ba2cea3d43ab76cfab5fce660f819e48d6a88bd95cb484543ca7ef6edd396e088db27796fe6ebaac57c6a02a3ca0ce795b911f1110942

  • SSDEEP

    6144:2PpU5axokHu/7pII+zgYqeVM6cb+b02/GiGbf413PS+NqXAaImv:UpU6okHuNItzbO1b00xiXc5XAaJ

Score
8/10
upx

Malware Config

Targets

    • Target

      091ff4e606326d533595650b725d004b092fe5e0d545bad9a9ce319e567e95bc

    • Size

      306KB

    • MD5

      dd5ab841169a83dcec8721d49a459cfc

    • SHA1

      2360ae888d3fbdb9ec4e3b655c9954c223d16e1a

    • SHA256

      091ff4e606326d533595650b725d004b092fe5e0d545bad9a9ce319e567e95bc

    • SHA512

      ce8dbf8b8fc5d5e95a5ba2cea3d43ab76cfab5fce660f819e48d6a88bd95cb484543ca7ef6edd396e088db27796fe6ebaac57c6a02a3ca0ce795b911f1110942

    • SSDEEP

      6144:2PpU5axokHu/7pII+zgYqeVM6cb+b02/GiGbf413PS+NqXAaImv:UpU6okHuNItzbO1b00xiXc5XAaJ

    Score
    8/10
    upx

    • Blocklisted process makes network request

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks