Overview

overview

8

Static

static

8854eb9bb6...2e.exe

windows7-x64

8

8854eb9bb6...2e.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    8854eb9bb6d67e46c6ac0357047274b6f7338ceb602cfc3d991d0bd6b560862e

  • Size

    541KB

  • Sample

    221126-1r9pksgd32

  • MD5

    31b25ecd777f5cfc1602d97cd0c75d75

  • SHA1

    e520b1bdb3841fe57ae070c13423ac87b2c2ecfd

  • SHA256

    8854eb9bb6d67e46c6ac0357047274b6f7338ceb602cfc3d991d0bd6b560862e

  • SHA512

    1ba67db34873c729551cfb34228f18b4613a28b90f64dddf81541f54cb40359e92ac0c1a1807dc5c1b36072c0bc6f96f59349c5eee496bde887486f0ea30f919

  • SSDEEP

    12288:lDKm7St/yUo7LWRX4U7iJmVd3DblL5y7ufSdAG2HvypW:MmU/yUo7LWRXPBrDblL5R6dA/5

Score
8/10
upx

Malware Config

Targets

    • Target

      8854eb9bb6d67e46c6ac0357047274b6f7338ceb602cfc3d991d0bd6b560862e

    • Size

      541KB

    • MD5

      31b25ecd777f5cfc1602d97cd0c75d75

    • SHA1

      e520b1bdb3841fe57ae070c13423ac87b2c2ecfd

    • SHA256

      8854eb9bb6d67e46c6ac0357047274b6f7338ceb602cfc3d991d0bd6b560862e

    • SHA512

      1ba67db34873c729551cfb34228f18b4613a28b90f64dddf81541f54cb40359e92ac0c1a1807dc5c1b36072c0bc6f96f59349c5eee496bde887486f0ea30f919

    • SSDEEP

      12288:lDKm7St/yUo7LWRX4U7iJmVd3DblL5y7ufSdAG2HvypW:MmU/yUo7LWRXPBrDblL5R6dA/5

    Score
    8/10
    upx

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks