General

  • Target

    d56993e698f68738bc2584e3e4694e306d8557775105cc95ae05ed8e25786724

  • Size

    430KB

  • Sample

    221206-hqcz4sdc87

  • MD5

    ae0a34e055457dec29a69187f8a29839

  • SHA1

    4164bb6b410cfa557302d0892269dc4c42e8d76e

  • SHA256

    d56993e698f68738bc2584e3e4694e306d8557775105cc95ae05ed8e25786724

  • SHA512

    7d7f2b3e906ac46241450e11a94faa2f891238d5cc88af30a8ca88eaf3b07b6baa39d9d9f7283628d3db6fc8249e1008af7e3d028fe43f3063b47ec42bc88f2b

  • SSDEEP

    12288:WA+mzLBCXrt/gEmAc4Qibf5+M2R+8sV3rVuk:WVEcXrxgEpy4R+lR+8sh

Score
8/10
upx

Malware Config

Targets

    • Target

      d56993e698f68738bc2584e3e4694e306d8557775105cc95ae05ed8e25786724

    • Size

      430KB

    • MD5

      ae0a34e055457dec29a69187f8a29839

    • SHA1

      4164bb6b410cfa557302d0892269dc4c42e8d76e

    • SHA256

      d56993e698f68738bc2584e3e4694e306d8557775105cc95ae05ed8e25786724

    • SHA512

      7d7f2b3e906ac46241450e11a94faa2f891238d5cc88af30a8ca88eaf3b07b6baa39d9d9f7283628d3db6fc8249e1008af7e3d028fe43f3063b47ec42bc88f2b

    • SSDEEP

      12288:WA+mzLBCXrt/gEmAc4Qibf5+M2R+8sV3rVuk:WVEcXrxgEpy4R+lR+8sh

    Score
    8/10
    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • AutoIT Executable

      AutoIT scripts compiled to PE executables.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v6

Tasks