Overview

overview

9

Static

static

9

233af642b3...f3.dll

windows7-x64

8

233af642b3...f3.dll

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    233af642b3e22613551e087a7cefcf2a530752da6613efc52da7cb957cb8f0f3

  • Size

    63KB

  • Sample

    221123-r5x39sdd8t

  • MD5

    ab07a13a5f27d85daa3f4636b41c4622

  • SHA1

    d6a919d524356f3ddbf6d8b209bc65cbddf2294d

  • SHA256

    233af642b3e22613551e087a7cefcf2a530752da6613efc52da7cb957cb8f0f3

  • SHA512

    e8459c5988bac2633c7d052f961fc3dc4c1eae64dd2686e74d909ee1a0f338460117031278c886a8e22fd82086be9451fb73e141f54dbd40bd4818814704ec66

  • SSDEEP

    1536:jeYzhn0K1uAiuYUaZabt5Qv7fU1WTD+TUT+1A:KYzhnHcAimEyfSfWkU1

Score
9/10
persistenceupx

Malware Config

Targets

    • Target

      233af642b3e22613551e087a7cefcf2a530752da6613efc52da7cb957cb8f0f3

    • Size

      63KB

    • MD5

      ab07a13a5f27d85daa3f4636b41c4622

    • SHA1

      d6a919d524356f3ddbf6d8b209bc65cbddf2294d

    • SHA256

      233af642b3e22613551e087a7cefcf2a530752da6613efc52da7cb957cb8f0f3

    • SHA512

      e8459c5988bac2633c7d052f961fc3dc4c1eae64dd2686e74d909ee1a0f338460117031278c886a8e22fd82086be9451fb73e141f54dbd40bd4818814704ec66

    • SSDEEP

      1536:jeYzhn0K1uAiuYUaZabt5Qv7fU1WTD+TUT+1A:KYzhnHcAimEyfSfWkU1

    Score
    8/10
    persistenceupx

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks