Overview

overview

7

Static

static

1

T-G中文.msi

windows7-x64

7

T-G中文.msi

windows10-2004-x64

7

Resubmissions

11/07/2023, 09:10

230711-k5j33sfh98 7

11/07/2023, 09:02

230711-kzn5vafh74 7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    T-G中文.msi

  • Size

    38.2MB

  • Sample

    230711-k5j33sfh98

  • MD5

    79c85baf08ad6c4764d17ff58bf3f94b

  • SHA1

    23af9d248019e60637d663f5269ccf6803dc6844

  • SHA256

    22bcaefdcd36c9cf937c146dd750376bebfd365c143373d097ff4cfff37d28f2

  • SHA512

    629446142c0a34aeedaf03445c385c33432d002a9199e29747657db4d453f3ceee292be2d85d3c43526753e5377e84fb68de5a61a983385ca0604f0937dcb7fe

  • SSDEEP

    786432:wokxQ0yHjoDFDG6XFBa7u4/unK9OIttey4XglRjJKWbb:wRQ9oQvaODtteyjlP3

Score
7/10
upx

Malware Config

Targets

    • Target

      T-G中文.msi

    • Size

      38.2MB

    • MD5

      79c85baf08ad6c4764d17ff58bf3f94b

    • SHA1

      23af9d248019e60637d663f5269ccf6803dc6844

    • SHA256

      22bcaefdcd36c9cf937c146dd750376bebfd365c143373d097ff4cfff37d28f2

    • SHA512

      629446142c0a34aeedaf03445c385c33432d002a9199e29747657db4d453f3ceee292be2d85d3c43526753e5377e84fb68de5a61a983385ca0604f0937dcb7fe

    • SSDEEP

      786432:wokxQ0yHjoDFDG6XFBa7u4/unK9OIttey4XglRjJKWbb:wRQ9oQvaODtteyjlP3

    Score
    7/10
    upx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks