Overview

overview

8

Static

static

1

UnifyRPIns...OD.exe

windows7-x64

8

UnifyRPIns...OD.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    UnifyRPInstaller_PROD.exe.7z

  • Size

    1.5MB

  • Sample

    231114-sz9esadc3v

  • MD5

    0927367d03930026dfd6755a8082fe9c

  • SHA1

    257165593a525c93904b241f8523ead5c7e70e21

  • SHA256

    7c3e5d9bbf8e3ef2af098a540d1493bc250bbc22f2f7fa9465454f18ad4fd25e

  • SHA512

    97b33e51de2a738946e7858af025f8e9da2a08ae949477b329e26158d6596117745b1a558c0a9b962395100ce937cb16b0dab2193d4c1194d2a1212c2824f47a

  • SSDEEP

    24576:Q1MV6OO14Fwjnj9Z0Gi8hScoSLeaHucN5OixkZtXJhIZZ7HMOdQZRsX:hZO1Dj9ZxbFLe8uc+iKJQ7sOBX

Score
8/10
discovery

Malware Config

Targets

    • Target

      UnifyRPInstaller_PROD.exe

    • Size

      1.6MB

    • MD5

      7cf0aecb85094858797b138550806bff

    • SHA1

      1e810dd9d14b724bba011e9bdfec9d39a7babb4b

    • SHA256

      5e7f0f017d42e75cbbaf0d0796f06a8d478f925d45f241710c25ea2ca4622dd3

    • SHA512

      6c286f87f28bdbe168fb7dcd0bb8cc79477f7820d5f96778bce89241b428d7d63815f2be5465f5bb2e5c110b2f68abea2740b8d21d8b6431c4be24aafdb3afe5

    • SSDEEP

      24576:dICcOHh9ZAQ7aNKmogrfTKe1w8G/n8DkYlDHZaEYtRkEKRYKeHO/hkclRPyYaHR:uC79daN5o+TK1n2lH0lHkBU+7bPr4R

    Score
    8/10
    discovery

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • AutoIT Executable

      AutoIT scripts compiled to PE executables.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks