Overview

overview

8

Static

static

8

c56ce969c6...76.exe

windows7-x64

8

c56ce969c6...76.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    c56ce969c6152d4e1538e366fc94ff3c6439ee596187ee534770f5a19d39ef76

  • Size

    142KB

  • Sample

    221129-vt2tvshf89

  • MD5

    3bf328fb129d40fa55f05b2e7199e437

  • SHA1

    470129ca944a909fafd38be73419167b8d218177

  • SHA256

    c56ce969c6152d4e1538e366fc94ff3c6439ee596187ee534770f5a19d39ef76

  • SHA512

    fe9a9f89f6c42f6b05d059d8c5da55c0df4190d38971069c1d73193b4490aeb378c9b3bd6e4b5bc9acbda472bfbfd9cd8da1057bdbdfa24dda2f9b617b0b9a02

  • SSDEEP

    3072:6mi+/dgy5Ef8doutaZZYCajVJ4K4Ry9/77fzJ/zp1xk:6tSEf+oSaR6PERy9n7Bp1xk

Score
8/10
upx

Malware Config

Targets

    • Target

      c56ce969c6152d4e1538e366fc94ff3c6439ee596187ee534770f5a19d39ef76

    • Size

      142KB

    • MD5

      3bf328fb129d40fa55f05b2e7199e437

    • SHA1

      470129ca944a909fafd38be73419167b8d218177

    • SHA256

      c56ce969c6152d4e1538e366fc94ff3c6439ee596187ee534770f5a19d39ef76

    • SHA512

      fe9a9f89f6c42f6b05d059d8c5da55c0df4190d38971069c1d73193b4490aeb378c9b3bd6e4b5bc9acbda472bfbfd9cd8da1057bdbdfa24dda2f9b617b0b9a02

    • SSDEEP

      3072:6mi+/dgy5Ef8doutaZZYCajVJ4K4Ry9/77fzJ/zp1xk:6tSEf+oSaR6PERy9n7Bp1xk

    Score
    8/10
    upx

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks