Overview

overview

8

Static

static

8

a03479dca9...d2.exe

windows7-x64

8

a03479dca9...d2.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    a03479dca91980c8bfb24960fbd4bb43814156786c4a9a8fb5f27012b0602cd2

  • Size

    109KB

  • Sample

    221205-2xc38seg75

  • MD5

    9af39725d97e868fc81e34bb6e6475d7

  • SHA1

    31f6bf5225d967cf21f5bb92205858b4d378fd7b

  • SHA256

    a03479dca91980c8bfb24960fbd4bb43814156786c4a9a8fb5f27012b0602cd2

  • SHA512

    582f9c68b84b8c8899603b4a327b765f8f39f8e16239814a8e9d7fccbbb4cd82ab71a815d0a56f945bcaa2589498da2e70fbbe8fe2d16f62d0459f21aed45faf

  • SSDEEP

    3072:6mi+/dgy5Ef8doutaZZYCajVJ4O28HLipOlGwk7LJ:6tSEf+oSaR6PH28HeE67LJ

Score
8/10
upx

Malware Config

Targets

    • Target

      a03479dca91980c8bfb24960fbd4bb43814156786c4a9a8fb5f27012b0602cd2

    • Size

      109KB

    • MD5

      9af39725d97e868fc81e34bb6e6475d7

    • SHA1

      31f6bf5225d967cf21f5bb92205858b4d378fd7b

    • SHA256

      a03479dca91980c8bfb24960fbd4bb43814156786c4a9a8fb5f27012b0602cd2

    • SHA512

      582f9c68b84b8c8899603b4a327b765f8f39f8e16239814a8e9d7fccbbb4cd82ab71a815d0a56f945bcaa2589498da2e70fbbe8fe2d16f62d0459f21aed45faf

    • SSDEEP

      3072:6mi+/dgy5Ef8doutaZZYCajVJ4O28HLipOlGwk7LJ:6tSEf+oSaR6PH28HeE67LJ

    Score
    8/10
    upx

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks