Overview

overview

7

Static

static

3

tmp.exe

windows7-x64

7

tmp.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    tmp

  • Size

    18.8MB

  • Sample

    230717-nkh7tscb7w

  • MD5

    a034baf605ae2fb67993ea8a61238c33

  • SHA1

    85417e7664ed5743cec823b9e636f00047d4e0ad

  • SHA256

    db9ac5558ca84d3a90428ddab6cbef971ca4051095438370481dbf7c28e2bc78

  • SHA512

    33beadbff7980438b99460e01ec48ab47ceb5a6970bfef5d53c4a0c0b099149a06bae9cc4a9a6ba65c85cbcf8a7068548407041774a90a948543643e57e2485b

  • SSDEEP

    393216:xeRzdW+Pi4lSNYmYt+XVhIZgze2pgZaqWW3JY6o+GG2a+8MxZ2RR:xeRzdW2FlYfIaVhIke2KsqWW5Y6jM80s

Score
7/10
upx

Malware Config

Targets

    • Target

      tmp

    • Size

      18.8MB

    • MD5

      a034baf605ae2fb67993ea8a61238c33

    • SHA1

      85417e7664ed5743cec823b9e636f00047d4e0ad

    • SHA256

      db9ac5558ca84d3a90428ddab6cbef971ca4051095438370481dbf7c28e2bc78

    • SHA512

      33beadbff7980438b99460e01ec48ab47ceb5a6970bfef5d53c4a0c0b099149a06bae9cc4a9a6ba65c85cbcf8a7068548407041774a90a948543643e57e2485b

    • SSDEEP

      393216:xeRzdW+Pi4lSNYmYt+XVhIZgze2pgZaqWW3JY6o+GG2a+8MxZ2RR:xeRzdW2FlYfIaVhIke2KsqWW5Y6jM80s

    Score
    7/10
    upx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks