Overview

overview

8

Static

static

bd07d46f52...1a.exe

windows7-x64

8

bd07d46f52...1a.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    bd07d46f522904a5af306afbffd9e95aafa87ff74f8c04343bc8ff51efc4b41a

  • Size

    44KB

  • Sample

    221203-gyzy6sbc97

  • MD5

    f324acee017440c3651609875210e63e

  • SHA1

    b56a0f5eb61506d304809390ce96f2de997b60a2

  • SHA256

    bd07d46f522904a5af306afbffd9e95aafa87ff74f8c04343bc8ff51efc4b41a

  • SHA512

    88372b79d97e96e74c891607a2376aaba8943fbd145bca1954c824e721ab4fb73f7593a473834d2800f1ec14ee3b0513360eb40ac401764bc3a4380560144be2

  • SSDEEP

    768:sOOAFJSQGO+upoVDDvvAXPJPvEuOSx7DPeI:POAF8QzoV3wXRPvEn

Score
8/10
upx

Malware Config

Targets

    • Target

      bd07d46f522904a5af306afbffd9e95aafa87ff74f8c04343bc8ff51efc4b41a

    • Size

      44KB

    • MD5

      f324acee017440c3651609875210e63e

    • SHA1

      b56a0f5eb61506d304809390ce96f2de997b60a2

    • SHA256

      bd07d46f522904a5af306afbffd9e95aafa87ff74f8c04343bc8ff51efc4b41a

    • SHA512

      88372b79d97e96e74c891607a2376aaba8943fbd145bca1954c824e721ab4fb73f7593a473834d2800f1ec14ee3b0513360eb40ac401764bc3a4380560144be2

    • SSDEEP

      768:sOOAFJSQGO+upoVDDvvAXPJPvEuOSx7DPeI:POAF8QzoV3wXRPvEn

    Score
    8/10
    upx

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks