Overview

overview

7

Static

static

3

update.exe

windows7-x64

7

update.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    update.exe

  • Size

    98.1MB

  • Sample

    230614-jaxv1sec29

  • MD5

    a5d0170e1e99ec1cf4244601617301d4

  • SHA1

    a93d83004a3c5c2c1e4179add050ec059b46e9a1

  • SHA256

    74f4feeb5f7010b91d277452ce26b32621bdca8d5725d6dd66ceddee9fc6484e

  • SHA512

    b425afdab8e8f517f86710118f09648097725830bc574b09796d8c9d7072a3d17f1aa67eec20cdf0e286a847896a5bbe0e4ee071ddd782f854881ef07b93a120

  • SSDEEP

    3145728:OyzRWHu7ls89w01ohn8o4mhguUSl86qR:/gP89sKmmuU886

Score
7/10

Malware Config

Targets

    • Target

      update.exe

    • Size

      98.1MB

    • MD5

      a5d0170e1e99ec1cf4244601617301d4

    • SHA1

      a93d83004a3c5c2c1e4179add050ec059b46e9a1

    • SHA256

      74f4feeb5f7010b91d277452ce26b32621bdca8d5725d6dd66ceddee9fc6484e

    • SHA512

      b425afdab8e8f517f86710118f09648097725830bc574b09796d8c9d7072a3d17f1aa67eec20cdf0e286a847896a5bbe0e4ee071ddd782f854881ef07b93a120

    • SSDEEP

      3145728:OyzRWHu7ls89w01ohn8o4mhguUSl86qR:/gP89sKmmuU886

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks