Overview

overview

7

Static

static

1

0be8860839...b4.exe

windows7-x64

7

0be8860839...b4.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    0be8860839b9778f880702a58e6f23b4

  • Size

    1.4MB

  • Sample

    231224-w431cagcep

  • MD5

    0be8860839b9778f880702a58e6f23b4

  • SHA1

    b778468abe3ad0c37bfa96c08e86074b1f9a275f

  • SHA256

    42b886bc4246311d2ea83f1456b4af727a86165c10ab3de26e29e36b97cd7b70

  • SHA512

    81ba28f2b2714cb9eb4721957634a1a8fdef072df122437ebf691179b9eea502fa98572d4711e3dddf6bdd3ae4f8f3236b7bd2f6fdd3b7a6bd07d1a3ef2e3809

  • SSDEEP

    24576:I9WC988bu6CoU/Lefz82LEYUbm8eLE3cwabS7DUB/wpXqSM0st4VrPba:IB88TCooLqz825D8eQaMosXH4yC

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      0be8860839b9778f880702a58e6f23b4

    • Size

      1.4MB

    • MD5

      0be8860839b9778f880702a58e6f23b4

    • SHA1

      b778468abe3ad0c37bfa96c08e86074b1f9a275f

    • SHA256

      42b886bc4246311d2ea83f1456b4af727a86165c10ab3de26e29e36b97cd7b70

    • SHA512

      81ba28f2b2714cb9eb4721957634a1a8fdef072df122437ebf691179b9eea502fa98572d4711e3dddf6bdd3ae4f8f3236b7bd2f6fdd3b7a6bd07d1a3ef2e3809

    • SSDEEP

      24576:I9WC988bu6CoU/Lefz82LEYUbm8eLE3cwabS7DUB/wpXqSM0st4VrPba:IB88TCooLqz825D8eQaMosXH4yC

    Score
    7/10
    discoveryupx

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks