Overview

overview

10

Static

static

3

c3f979c75e...JC.exe

windows7-x64

10

c3f979c75e...JC.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c3f979c75e980281fdbe56abbaed02a8_JC.exe

  • Size

    289KB

  • Sample

    231001-qk6n8sce88

  • MD5

    c3f979c75e980281fdbe56abbaed02a8

  • SHA1

    51116b3471caba25102b19d1cef2606dfe3d8454

  • SHA256

    9417897eaa3996f8319d1f91e2819038511018b4e6e730167b3668c763130b8d

  • SHA512

    270956f8461f9296a2aeecce79200bba201af9a4021e4731e57ec45da9c0c6cd685c456dd08c399654eede6c17f04320e1dc30e938332bc37241fa28d90281a0

  • SSDEEP

    3072:GY9CUT62/UOVNu5YKZmRoWM4pkcrIobbZ5QzN2Vs/2xdqWnaf+y6SiG/sMFvkzXE:GY9C8QyNRQbobbfQ8V+W7MeO8l58

Score
10/10
upatredownloader

Malware Config

Targets

    • Target

      c3f979c75e980281fdbe56abbaed02a8_JC.exe

    • Size

      289KB

    • MD5

      c3f979c75e980281fdbe56abbaed02a8

    • SHA1

      51116b3471caba25102b19d1cef2606dfe3d8454

    • SHA256

      9417897eaa3996f8319d1f91e2819038511018b4e6e730167b3668c763130b8d

    • SHA512

      270956f8461f9296a2aeecce79200bba201af9a4021e4731e57ec45da9c0c6cd685c456dd08c399654eede6c17f04320e1dc30e938332bc37241fa28d90281a0

    • SSDEEP

      3072:GY9CUT62/UOVNu5YKZmRoWM4pkcrIobbZ5QzN2Vs/2xdqWnaf+y6SiG/sMFvkzXE:GY9C8QyNRQbobbfQ8V+W7MeO8l58

    Score
    10/10
    upatredownloader

    • Upatre

      Upatre is a generic malware downloader.

      downloaderupatre

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks