Overview

overview

8

Static

static

f104beba80...46.exe

windows7-x64

8

f104beba80...46.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f104beba80be6b43a07221096077af021da0416871323b6d0ef104a5c1d3ec46

  • Size

    564KB

  • Sample

    221124-azmlxaff93

  • MD5

    1adf4b51020907707dbe24ed9fd1f770

  • SHA1

    2c1762068b2983da0c71e399c3557f3e58d90627

  • SHA256

    f104beba80be6b43a07221096077af021da0416871323b6d0ef104a5c1d3ec46

  • SHA512

    155806703aba6c6dc7e62320a7285c44d08633e7e9d4713760e71c6a039babed37706a3be1be069a8dcfdb4e6975475a49f5f1fe73efa1f0018be681e24705f8

  • SSDEEP

    12288:vR9PRPCR9PBPCR9PZPCR9PZPCR9PjPCR9PbPCR9PPPCR9PvPCR9P:vRiRWR6R+RMRwRAR0R

Score
8/10
upx

Malware Config

Targets

    • Target

      f104beba80be6b43a07221096077af021da0416871323b6d0ef104a5c1d3ec46

    • Size

      564KB

    • MD5

      1adf4b51020907707dbe24ed9fd1f770

    • SHA1

      2c1762068b2983da0c71e399c3557f3e58d90627

    • SHA256

      f104beba80be6b43a07221096077af021da0416871323b6d0ef104a5c1d3ec46

    • SHA512

      155806703aba6c6dc7e62320a7285c44d08633e7e9d4713760e71c6a039babed37706a3be1be069a8dcfdb4e6975475a49f5f1fe73efa1f0018be681e24705f8

    • SSDEEP

      12288:vR9PRPCR9PBPCR9PZPCR9PZPCR9PjPCR9PbPCR9PPPCR9PvPCR9P:vRiRWR6R+RMRwRAR0R

    Score
    8/10
    upx

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks