Overview

overview

8

Static

static

8

26fa89f18a...29.exe

windows7-x64

8

26fa89f18a...29.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    26fa89f18a9a705817c3acdc5cffd27eadc9f06217863cdd4be0cb93eecef929

  • Size

    9.5MB

  • Sample

    221206-at2tmsbe89

  • MD5

    f203f8d434b9ebe125cb1c08d827c24d

  • SHA1

    a1461c7883ecc37c0ab8a1bdfc3894c2a9aff6b0

  • SHA256

    26fa89f18a9a705817c3acdc5cffd27eadc9f06217863cdd4be0cb93eecef929

  • SHA512

    e74cb83daa760b904fa1e37700efe52a042aa64ab459ac2653e98edc75bef9b5aab1c47321188f89a3f23ac7874ef4ed58a39eb9f311f3b868c7bbbfe49e5df8

  • SSDEEP

    98304:RtytNt8tytNt0tytNt8tytNtEtytNt8tytNtEtytNt8tytNtWt:LkvCkvqkvCkvakvCkvakvCkvw

Score
8/10
upx

Malware Config

Targets

    • Target

      26fa89f18a9a705817c3acdc5cffd27eadc9f06217863cdd4be0cb93eecef929

    • Size

      9.5MB

    • MD5

      f203f8d434b9ebe125cb1c08d827c24d

    • SHA1

      a1461c7883ecc37c0ab8a1bdfc3894c2a9aff6b0

    • SHA256

      26fa89f18a9a705817c3acdc5cffd27eadc9f06217863cdd4be0cb93eecef929

    • SHA512

      e74cb83daa760b904fa1e37700efe52a042aa64ab459ac2653e98edc75bef9b5aab1c47321188f89a3f23ac7874ef4ed58a39eb9f311f3b868c7bbbfe49e5df8

    • SSDEEP

      98304:RtytNt8tytNt0tytNt8tytNtEtytNt8tytNtEtytNt8tytNtWt:LkvCkvqkvCkvakvCkvakvCkvw

    Score
    8/10
    upx

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks