Overview

overview

7

Static

static

3

123.exe

windows7-x64

7

123.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    123.exe

  • Size

    6.0MB

  • Sample

    231012-p9jekadb33

  • MD5

    ae1a92fa8989479e5331cc5b637eb5ff

  • SHA1

    fa7b00f814bf535ce2e0ffecf7dbee4e2859284f

  • SHA256

    d65acab3e5624816b84b696ff4de52d2ada13409532249c88e7d6f16759951e9

  • SHA512

    febad8b4642b2558c164d73b49f56c69e7f4a2ffca91ed2e0ee40feaa6d54202f1077edd6dd1d74b38a9b98e8205768ec029a9a5a73155b5dd3e547441ff6352

  • SSDEEP

    98304:Z7Yk72lGIHTKEHI/cRoCh/sNze+4bVqq1+CCN6s+p1mJj2i15YUTG4XNTgk3Ufz4:6k7cGcKsItCh/Se+4Vqq1/C4fjmJj2A7

Score
7/10
pyinstallerupx

Malware Config

Targets

    • Target

      123.exe

    • Size

      6.0MB

    • MD5

      ae1a92fa8989479e5331cc5b637eb5ff

    • SHA1

      fa7b00f814bf535ce2e0ffecf7dbee4e2859284f

    • SHA256

      d65acab3e5624816b84b696ff4de52d2ada13409532249c88e7d6f16759951e9

    • SHA512

      febad8b4642b2558c164d73b49f56c69e7f4a2ffca91ed2e0ee40feaa6d54202f1077edd6dd1d74b38a9b98e8205768ec029a9a5a73155b5dd3e547441ff6352

    • SSDEEP

      98304:Z7Yk72lGIHTKEHI/cRoCh/sNze+4bVqq1+CCN6s+p1mJj2i15YUTG4XNTgk3Ufz4:6k7cGcKsItCh/Se+4Vqq1/C4fjmJj2A7

    Score
    7/10
    pyinstallerupx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks