Overview

overview

8

Static

static

8

5d4215acf0...77.exe

windows7-x64

8

5d4215acf0...77.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5d4215acf0ae322b8633095478f5d9a87f17a070b67bc310c206c643354ae877

  • Size

    2.8MB

  • Sample

    221203-z298eseh39

  • MD5

    fc0d11b9914912c48b60ec78644bef66

  • SHA1

    e4ac08bab388de9e3e91c0191a59dc9076068884

  • SHA256

    5d4215acf0ae322b8633095478f5d9a87f17a070b67bc310c206c643354ae877

  • SHA512

    1047c392c068e0186937c6013abc7cc4828a6be63dd5439a554e74e32ada9498567545539e8924a7c836249963ef87d46d3c738c763a0457e78c0728aae2a129

  • SSDEEP

    24576:aDyTFtjBDyTFtj/DyTFtjBDyTFtjIDyTFtjBDyTFtjUDyTFtjBDyTFtjwDyTFtjj:Htqt0tqtltqthtqtttqtetqtitqtet

Score
8/10
upx

Malware Config

Targets

    • Target

      5d4215acf0ae322b8633095478f5d9a87f17a070b67bc310c206c643354ae877

    • Size

      2.8MB

    • MD5

      fc0d11b9914912c48b60ec78644bef66

    • SHA1

      e4ac08bab388de9e3e91c0191a59dc9076068884

    • SHA256

      5d4215acf0ae322b8633095478f5d9a87f17a070b67bc310c206c643354ae877

    • SHA512

      1047c392c068e0186937c6013abc7cc4828a6be63dd5439a554e74e32ada9498567545539e8924a7c836249963ef87d46d3c738c763a0457e78c0728aae2a129

    • SSDEEP

      24576:aDyTFtjBDyTFtj/DyTFtjBDyTFtjIDyTFtjBDyTFtjUDyTFtjBDyTFtjwDyTFtjj:Htqt0tqtltqthtqtttqtetqtitqtet

    Score
    8/10
    upx

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks