Overview

overview

8

Static

static

9e882c6602...0d.exe

windows7-x64

8

9e882c6602...0d.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    9e882c660231e15bcc38e60f36944127133d829ff359f96d89fb79c64b74220d

  • Size

    316KB

  • Sample

    221202-3mttnseg58

  • MD5

    b7e7dfda3555be47d5e135419d44438f

  • SHA1

    b7dd034c716b825985b6745e82cf4b92fceeb4e0

  • SHA256

    9e882c660231e15bcc38e60f36944127133d829ff359f96d89fb79c64b74220d

  • SHA512

    0fbd65b6d85b3bd1e19135bcff363963866444d41532a42ce783c7bf5a28df73a10f3972868dc81531c8458510efb699b98fb47f708f162a62f241ba509ac897

  • SSDEEP

    6144:5sehzRFJPC6ocu1YgWWko8efjmkO4vDx0OFMvP5nJPit0i2Mza:5rQ65q9b8ery0N0O0hhitz3a

Score
8/10
persistenceupx

Malware Config

Targets

    • Target

      9e882c660231e15bcc38e60f36944127133d829ff359f96d89fb79c64b74220d

    • Size

      316KB

    • MD5

      b7e7dfda3555be47d5e135419d44438f

    • SHA1

      b7dd034c716b825985b6745e82cf4b92fceeb4e0

    • SHA256

      9e882c660231e15bcc38e60f36944127133d829ff359f96d89fb79c64b74220d

    • SHA512

      0fbd65b6d85b3bd1e19135bcff363963866444d41532a42ce783c7bf5a28df73a10f3972868dc81531c8458510efb699b98fb47f708f162a62f241ba509ac897

    • SSDEEP

      6144:5sehzRFJPC6ocu1YgWWko8efjmkO4vDx0OFMvP5nJPit0i2Mza:5rQ65q9b8ery0N0O0hhitz3a

    Score
    8/10
    persistenceupx

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks