Overview

overview

8

Static

static

3

Activator.unp.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    Activator.unp.exe

  • Size

    309KB

  • Sample

    230525-vn5nkaca71

  • MD5

    697dc248f68e87fa163e7d33b1dc81ab

  • SHA1

    470247390de7421f2d2a97ded9a3f1cba6fe704e

  • SHA256

    360bcb54517b032282a397c216416fd3e9efbd58754a907e07b941c3cfde0e30

  • SHA512

    4ab9e56bb306d61b7168858e1a384218153288009cc0a8c72bfeb89cbddc3584d1c759edc006e7b51632607e9c87c6f82cd0613cd5c6d87b5f217253728ff475

  • SSDEEP

    6144:eOdrFM9Y0gh0p7DJ5cAT4HUV39zY1YfAh4Ua/apTBJ:eO09YH2ppTV39Noh4Ua/apTr

Score
8/10

Malware Config

Targets

    • Target

      Activator.unp.exe

    • Size

      309KB

    • MD5

      697dc248f68e87fa163e7d33b1dc81ab

    • SHA1

      470247390de7421f2d2a97ded9a3f1cba6fe704e

    • SHA256

      360bcb54517b032282a397c216416fd3e9efbd58754a907e07b941c3cfde0e30

    • SHA512

      4ab9e56bb306d61b7168858e1a384218153288009cc0a8c72bfeb89cbddc3584d1c759edc006e7b51632607e9c87c6f82cd0613cd5c6d87b5f217253728ff475

    • SSDEEP

      6144:eOdrFM9Y0gh0p7DJ5cAT4HUV39zY1YfAh4Ua/apTBJ:eO09YH2ppTV39Noh4Ua/apTr

    Score
    8/10

    • Drops file in Drivers directory

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    behavioral1

MITRE ATT&CK Enterprise v6

Tasks