Overview

overview

8

Static

static

ab02d10416...33.exe

windows7-x64

8

ab02d10416...33.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    ab02d10416fb3ccde881cf1bf3dc74790b2b2b0a437681c716ef4388c6da8833

  • Size

    204KB

  • Sample

    221202-2j646aee8v

  • MD5

    5c6e930e9e5aebbc52bbec5161cb4506

  • SHA1

    7613933950bc5b6ae10bf28c42c9f7bbe65c56e6

  • SHA256

    ab02d10416fb3ccde881cf1bf3dc74790b2b2b0a437681c716ef4388c6da8833

  • SHA512

    9ee53252bf0f2dda7d4a47e881fd77f0fc0ec1a92b7156d9fd61d5b92cc96145d64809d64a0eec6a84ddc6c518149e7b045d69dd8dbfd46ddd23ab88021a0fd0

  • SSDEEP

    3072:b1dlKwgj23+Oz05YoNozcyUno7gE+teVagLMt7cNaPOicp2MLQ:b1dlZro5yrUKgEbaqMdcNaWifMLQ

Score
8/10
upx

Malware Config

Targets

    • Target

      ab02d10416fb3ccde881cf1bf3dc74790b2b2b0a437681c716ef4388c6da8833

    • Size

      204KB

    • MD5

      5c6e930e9e5aebbc52bbec5161cb4506

    • SHA1

      7613933950bc5b6ae10bf28c42c9f7bbe65c56e6

    • SHA256

      ab02d10416fb3ccde881cf1bf3dc74790b2b2b0a437681c716ef4388c6da8833

    • SHA512

      9ee53252bf0f2dda7d4a47e881fd77f0fc0ec1a92b7156d9fd61d5b92cc96145d64809d64a0eec6a84ddc6c518149e7b045d69dd8dbfd46ddd23ab88021a0fd0

    • SSDEEP

      3072:b1dlKwgj23+Oz05YoNozcyUno7gE+teVagLMt7cNaPOicp2MLQ:b1dlZro5yrUKgEbaqMdcNaWifMLQ

    Score
    8/10
    upx

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks