Overview

overview

8

Static

static

8

3090557cd7...ce.exe

windows7-x64

8

3090557cd7...ce.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    3090557cd729c5b492296c29635fc2e848ccf390079fbe5846a7b460f9e28ece

  • Size

    696KB

  • Sample

    221203-tnk4gseg93

  • MD5

    010dc2c8c2e8ab8edb3df5e62fa10a54

  • SHA1

    f3e61dbd519adcf8667c30456c7a81c83c9f99fd

  • SHA256

    3090557cd729c5b492296c29635fc2e848ccf390079fbe5846a7b460f9e28ece

  • SHA512

    c042fbee83f4968d893ea3bd1a9a18622bd8438d5ef8a5e8feb4535eb8fe7cab0d252b1d5a8417b12ce6e4a14454e5e43da815610166a5001f7ea534cbae83ad

  • SSDEEP

    12288:xRGrg2hRIDBEK8+eCyUjDadnD4Fgh/taJhPOFSrcjCnzB/O2pMbld5WypLEWblWq:xRrOo/e0anD4Fgpty5fAja/OvWGLEWbf

Score
8/10
persistenceupx

Malware Config

Targets

    • Target

      3090557cd729c5b492296c29635fc2e848ccf390079fbe5846a7b460f9e28ece

    • Size

      696KB

    • MD5

      010dc2c8c2e8ab8edb3df5e62fa10a54

    • SHA1

      f3e61dbd519adcf8667c30456c7a81c83c9f99fd

    • SHA256

      3090557cd729c5b492296c29635fc2e848ccf390079fbe5846a7b460f9e28ece

    • SHA512

      c042fbee83f4968d893ea3bd1a9a18622bd8438d5ef8a5e8feb4535eb8fe7cab0d252b1d5a8417b12ce6e4a14454e5e43da815610166a5001f7ea534cbae83ad

    • SSDEEP

      12288:xRGrg2hRIDBEK8+eCyUjDadnD4Fgh/taJhPOFSrcjCnzB/O2pMbld5WypLEWblWq:xRrOo/e0anD4Fgpty5fAja/OvWGLEWbf

    Score
    8/10
    persistenceupx

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks