Overview

overview

8

Static

static

8

7527a50b6e...80.exe

windows7-x64

8

7527a50b6e...80.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    7527a50b6ef804b59d1dada0943fd08be9afb23d3a06c24d5d7c53ce41999980

  • Size

    41KB

  • Sample

    221201-dns64ahg57

  • MD5

    dd80c4327e66f773a10e4b498607e138

  • SHA1

    de051b56c19ee66b57a858e202babb4697887713

  • SHA256

    7527a50b6ef804b59d1dada0943fd08be9afb23d3a06c24d5d7c53ce41999980

  • SHA512

    8fa7b214c117a59d766f893ab986bf1cbb5cc8525f9ae0f6b810f84d2538ab5e56ed7601148f84a5849ca5873da43263e1c7442afce785115ca6ec78ab6c5043

  • SSDEEP

    768:BLFtPxgh6ySO6zYxrbRlkRMDyzn99s0503LY5fCJEgtsxjKppBdsZUf:B5tPxagOCkD7DQnQ0503jsxjKpuKf

Score
8/10
evasionupx

Malware Config

Targets

    • Target

      7527a50b6ef804b59d1dada0943fd08be9afb23d3a06c24d5d7c53ce41999980

    • Size

      41KB

    • MD5

      dd80c4327e66f773a10e4b498607e138

    • SHA1

      de051b56c19ee66b57a858e202babb4697887713

    • SHA256

      7527a50b6ef804b59d1dada0943fd08be9afb23d3a06c24d5d7c53ce41999980

    • SHA512

      8fa7b214c117a59d766f893ab986bf1cbb5cc8525f9ae0f6b810f84d2538ab5e56ed7601148f84a5849ca5873da43263e1c7442afce785115ca6ec78ab6c5043

    • SSDEEP

      768:BLFtPxgh6ySO6zYxrbRlkRMDyzn99s0503LY5fCJEgtsxjKppBdsZUf:B5tPxagOCkD7DQnQ0503jsxjKpuKf

    Score
    8/10
    evasionupx

    • Drops file in Drivers directory

    • Executes dropped EXE

    • Stops running service(s)

      evasion

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks