Overview

overview

8

Static

static

3

online-changelog.url

windows10-1703-x64

7

sddp-17.2....up.exe

windows10-1703-x64

8

Resubmissions

10/05/2023, 14:58

230510-scd1csgf92 7

10/05/2023, 14:51

230510-r8a3xagf59 8

10/05/2023, 14:39

230510-r1lvfage97 7

Sharing

Copy URL Twitter E-mail

General

  • Target

    sddp-17.2.4rc1-setup.zip

  • Size

    134.3MB

  • Sample

    230510-r8a3xagf59

  • MD5

    337781bb71eb8d72976d4aeb9b05bd5c

  • SHA1

    481967deb47a66320a9fdd89d6c9f08d78b186b5

  • SHA256

    0f71c6bbe9353075c70df8fa35b8ae16ba04c87d2f40b4a53d97481afc30b1f1

  • SHA512

    7bf0e943861f535947197a820260632e5d1a97069c791029431fedcd1ce685e60587b9891eefaa748b2fb95de95486a161a7c351b102dacbec3ee4c21de5ebca

  • SSDEEP

    3145728:EluV2j8rnmxkOZZ01itPuJFR6WZO23u0NvZBmkvsBcBPoL:Elfjqmqb2uLgWZOTaHHvPU

Score
8/10
discoverylinkpdfupx

Malware Config

Targets

    • Target

      online-changelog.url

    • Size

      90B

    • MD5

      f8fad72e09b701919104eb73901c8409

    • SHA1

      c811c70ea4cb0ce59da9a4c4bac2bb40720e3a16

    • SHA256

      a0a0922a3478e0fcb9b74a47a7a7967d7376a77a5c47f6089527c2961879a210

    • SHA512

      4b4c1cb3d27436faca0957f432b1bbd457070aff67263a4b12a9bf89ce037225674adb521f67caba30952fbd2f359be71010e0fa4171af88570fa2604c0cd5c5

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1

    • Target

      sddp-17.2.4rc1-setup.exe

    • Size

      131.9MB

    • MD5

      c284e6abd05990a48dcecf92242eaa31

    • SHA1

      309207d6fba2ff3c75b0d23db437a3d03442213e

    • SHA256

      8efff6cabcbc2a46f4b9b174e707225854dda2f327b57f5f01922a3637f78310

    • SHA512

      84a23f1e3dd401a9721dfde188e15f29a40762cb4eef9783cedb2391ef688ca9ffe8d423e7c9abfa3b3096d9f9c84853a106cb7abb1357981c822aa55126a2af

    • SSDEEP

      3145728:v9SxyB4jZEzomFZGJCh98pnJYc/OUt8evlTxoU3ebmDb0u:v9FByE8jO8BCc/ODQzp3zJ

    Score
    8/10
    discoveryupx

    • Drops file in Drivers directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

    behavioral2

MITRE ATT&CK Enterprise v6

Tasks