Overview

overview

9

Static

static

8

59e231fa6e...34.exe

windows7-x64

9

59e231fa6e...34.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    59e231fa6efad7994de09dff96ba18924990a579e27cf23b09737d5263cf1834

  • Size

    21KB

  • Sample

    221203-fde8lafa26

  • MD5

    428adfafe1a9e26985937585d1665700

  • SHA1

    07a5f87402b16f329fbfd19b56a9116e849d2ecc

  • SHA256

    59e231fa6efad7994de09dff96ba18924990a579e27cf23b09737d5263cf1834

  • SHA512

    f0544ab7e40edf6432841b9bd34c14878fde626e13091b0c5ce4ac6654df56a4a5cb685798fd026315307b3bd32c7606e82d80f3c0a99cb584ed5d5fac1e8722

  • SSDEEP

    384:5rBs9M5DG0jwQ7mYrkzvs6x6sp1+qyr/6Zq9xT6B9K8GpBG1:BBrDGYZD6Jtyj6hB9gq

Score
9/10
upx

Malware Config

Targets

    • Target

      59e231fa6efad7994de09dff96ba18924990a579e27cf23b09737d5263cf1834

    • Size

      21KB

    • MD5

      428adfafe1a9e26985937585d1665700

    • SHA1

      07a5f87402b16f329fbfd19b56a9116e849d2ecc

    • SHA256

      59e231fa6efad7994de09dff96ba18924990a579e27cf23b09737d5263cf1834

    • SHA512

      f0544ab7e40edf6432841b9bd34c14878fde626e13091b0c5ce4ac6654df56a4a5cb685798fd026315307b3bd32c7606e82d80f3c0a99cb584ed5d5fac1e8722

    • SSDEEP

      384:5rBs9M5DG0jwQ7mYrkzvs6x6sp1+qyr/6Zq9xT6B9K8GpBG1:BBrDGYZD6Jtyj6hB9gq

    Score
    9/10
    upx

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks