33bab34f27ccfedbd1863426a1dfe03324c50f3aa40f0f51f6109dca353a9320 | Triage

Resubmissions

30-09-2023 15:59

230930-tfbvvadf6s 7

30-09-2023 15:39

230930-s325wafa42 7

Sharing

General

Target

33bab34f27ccfedbd1863426a1dfe03324c50f3aa40f0f51f6109dca353a9320
Size

266KB
Sample

230930-tfbvvadf6s
MD5

7620eee782084559d806788d1f2cd2d8
SHA1

d17ad2c2e11c26df0a444477c7bb745b53526abe
SHA256

33bab34f27ccfedbd1863426a1dfe03324c50f3aa40f0f51f6109dca353a9320
SHA512

1f25e8bd6b552cfc4dbff2887f197c004c26d2572ff3da6a74eea2d7337ea52e8b0ab7a0d055106bc030795156892a8aac1618377e1b899cbab96cf3d0aa15e4
SSDEEP

6144:1XzKdNY49u8rVR8vw2jhV7k1QXzF5O801net:ma4AIYw+/7lXi801

Score

7^/10

upx

Malware Config

Targets

- Target
  
  33bab34f27ccfedbd1863426a1dfe03324c50f3aa40f0f51f6109dca353a9320
- Size
  
  266KB
- MD5
  
  7620eee782084559d806788d1f2cd2d8
- SHA1
  
  d17ad2c2e11c26df0a444477c7bb745b53526abe
- SHA256
  
  33bab34f27ccfedbd1863426a1dfe03324c50f3aa40f0f51f6109dca353a9320
- SHA512
  
  1f25e8bd6b552cfc4dbff2887f197c004c26d2572ff3da6a74eea2d7337ea52e8b0ab7a0d055106bc030795156892a8aac1618377e1b899cbab96cf3d0aa15e4
- SSDEEP
  
  6144:1XzKdNY49u8rVR8vw2jhV7k1QXzF5O801net:ma4AIYw+/7lXi801
Score

7^/10

upx
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2
- Target
  
  out.upx
- Size
  
  485KB
- MD5
  
  cf0245373a61cc2c62d530be3188750d
- SHA1
  
  d18a7c1d8098733ec5c72eeb896344200b53d261
- SHA256
  
  93ab59067cf5a6c19722c86f3028bcedfb10ee85ddb6daf85ae38666a693677a
- SHA512
  
  6990960d4fd95c5143fe63cb69577e508647e83e9468989945a66fd285aea3f126df3939d345177774308b46c73433bf8d2ec7db5dca574fc04f7a196d53578b
- SSDEEP
  
  6144:J7WQ0j4ltziolIGlnE2dpl01net4gPYfq8ZF02IlLZD:ni4lZio5l01HgPbD
Score

1^/10
behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4