Overview

overview

9

Static

static

c5f0782e4f...79.exe

windows7-x64

9

c5f0782e4f...79.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    c5f0782e4f84e60e5258c1f9cb53b6255a6161916ea837c18812191fc8d79779

  • Size

    1.5MB

  • Sample

    221125-pjq2qagb45

  • MD5

    8877e5016777aca431b09d953c2ef2d5

  • SHA1

    faf65ff3b6961c4bea11869659d1e4df2a2cc4bd

  • SHA256

    c5f0782e4f84e60e5258c1f9cb53b6255a6161916ea837c18812191fc8d79779

  • SHA512

    24cf9434311c3a6c62cbedba4b7404eb98e1730ac782a2289b650788065f24f7d3fa9ccbc7a179025361ad734254b16f63e8b0aa9c8e6d413188b21e06e1906f

  • SSDEEP

    24576:KyQKIXPwrujh2YpbTZaqdiXSp0c02uFG6dAk3CMQoSsnt5v:KyqXpIMTZaqdwk0c05HGi5Ssnt5v

Score
9/10
upx

Malware Config

Targets

    • Target

      c5f0782e4f84e60e5258c1f9cb53b6255a6161916ea837c18812191fc8d79779

    • Size

      1.5MB

    • MD5

      8877e5016777aca431b09d953c2ef2d5

    • SHA1

      faf65ff3b6961c4bea11869659d1e4df2a2cc4bd

    • SHA256

      c5f0782e4f84e60e5258c1f9cb53b6255a6161916ea837c18812191fc8d79779

    • SHA512

      24cf9434311c3a6c62cbedba4b7404eb98e1730ac782a2289b650788065f24f7d3fa9ccbc7a179025361ad734254b16f63e8b0aa9c8e6d413188b21e06e1906f

    • SSDEEP

      24576:KyQKIXPwrujh2YpbTZaqdiXSp0c02uFG6dAk3CMQoSsnt5v:KyqXpIMTZaqdwk0c05HGi5Ssnt5v

    Score
    9/10
    upx

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks