Overview

overview

8

Static

static

8

6340a2c893...1b.exe

windows7-x64

8

6340a2c893...1b.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6340a2c8931a473f6211dfcc6198fe567b32413e4b3a996141f8ade4ee82f71b

  • Size

    8.7MB

  • Sample

    221203-z2j18sae5z

  • MD5

    b8577c2b36ebb1639ee15b06723f0c15

  • SHA1

    f87c45e33155c3c1535726d1726a5f7e04f88926

  • SHA256

    6340a2c8931a473f6211dfcc6198fe567b32413e4b3a996141f8ade4ee82f71b

  • SHA512

    197e4535462af29b2f9b3de01b1e9627825362cff91196e475bd1869f221c702dc9725ff88d676d9c1ea556613fb4844c3cc0023e1b903b95712454777d99a1a

  • SSDEEP

    196608:r0Ecl0Eco0Ecl0Ecb0Ecl0Ecq0Ecl0EcM0Ecl0Ec:r0Ecl0Eco0Ecl0Ecb0Ecl0Ecq0Ecl0EF

Score
8/10
upx

Malware Config

Targets

    • Target

      6340a2c8931a473f6211dfcc6198fe567b32413e4b3a996141f8ade4ee82f71b

    • Size

      8.7MB

    • MD5

      b8577c2b36ebb1639ee15b06723f0c15

    • SHA1

      f87c45e33155c3c1535726d1726a5f7e04f88926

    • SHA256

      6340a2c8931a473f6211dfcc6198fe567b32413e4b3a996141f8ade4ee82f71b

    • SHA512

      197e4535462af29b2f9b3de01b1e9627825362cff91196e475bd1869f221c702dc9725ff88d676d9c1ea556613fb4844c3cc0023e1b903b95712454777d99a1a

    • SSDEEP

      196608:r0Ecl0Eco0Ecl0Ecb0Ecl0Ecq0Ecl0EcM0Ecl0Ec:r0Ecl0Eco0Ecl0Ecb0Ecl0Ecq0Ecl0EF

    Score
    8/10
    upx

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks