Overview

overview

7

Static

static

7

39a7b452a1...5d.exe

windows7-x64

7

39a7b452a1...5d.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    39a7b452a15a2753a88c8d6ebdcae163abfbb065a9ba7ffa5818a0bf7f6bd05d.exe.zip

  • Size

    974KB

  • Sample

    231031-q45laage6v

  • MD5

    25e1c717c94d3cc01885eb64133f9792

  • SHA1

    bdcce6e92dc276f847f2f0e8f18f7ea4660269a7

  • SHA256

    db3d549dfbf99200cca7bdbf396ab9d9cf8db722cbd286024791afe770393076

  • SHA512

    a16235df32638171a8bdba3223899401ddbd19620674e02fac7682ee8e3c633384e9e9fbaec3ff2de6dee6b901d935af1e5a2c3567cc54468b3ce2be3de32af0

  • SSDEEP

    24576:T/UsSJBbZu3w1oJCCe280TfSVUmgc25GzhKIwwPgIqt5Mfcc2RzX:M4PT5xTI25GPgIqtoOFX

Score
7/10
persistenceupx

Malware Config

Targets

    • Target

      39a7b452a15a2753a88c8d6ebdcae163abfbb065a9ba7ffa5818a0bf7f6bd05d.exe

    • Size

      2.4MB

    • MD5

      85038cc140f9cb15cffb03d2a8a6a19c

    • SHA1

      d88a3bbbe6f1b6f223c3e70e5372415d80bb80a0

    • SHA256

      39a7b452a15a2753a88c8d6ebdcae163abfbb065a9ba7ffa5818a0bf7f6bd05d

    • SHA512

      540cbf642379537c4ded992bf2725ab8f860d395299647f8f11f24dc3df9f3ba2d70d7232eac05306896778855702db5794e76592fbab03f4ccd72ad4d72a170

    • SSDEEP

      24576:/9PkGgW8ugdGJYDLoL/vddOUmB5I4LjbrMChWVeTsAQYGixubMkeT:OwxH1ah4UTtQYVxub0

    Score
    7/10
    persistenceupx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks