Overview

overview

7

Static

static

1

36dc8ff07e...da.exe

windows7-x64

7

36dc8ff07e...da.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    36dc8ff07e4101fd729b5ee605b1cada

  • Size

    1.1MB

  • Sample

    231225-xt8craagc3

  • MD5

    36dc8ff07e4101fd729b5ee605b1cada

  • SHA1

    2782e22b1e686dd5dfe949604f07a43fd30a0709

  • SHA256

    23d4ef79cb7a0dc60087b708116ec4a629ecb41ae503a3b64a2ffa30a99f3997

  • SHA512

    f7e11eab04d2d07d5dd7a233ac7aa32454e2fca79dd3f7df35c60fea9722ab5deb3723bc5ddd5a9c66ce33c6a5f73514cf0a585f972d2ed907abe3960372bd3b

  • SSDEEP

    24576:+9WC988bu6CocrIn8Ez82LEeb1wk/h48Ocb/B/w3248ULF:+B88TCoyEz821BVlA

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      36dc8ff07e4101fd729b5ee605b1cada

    • Size

      1.1MB

    • MD5

      36dc8ff07e4101fd729b5ee605b1cada

    • SHA1

      2782e22b1e686dd5dfe949604f07a43fd30a0709

    • SHA256

      23d4ef79cb7a0dc60087b708116ec4a629ecb41ae503a3b64a2ffa30a99f3997

    • SHA512

      f7e11eab04d2d07d5dd7a233ac7aa32454e2fca79dd3f7df35c60fea9722ab5deb3723bc5ddd5a9c66ce33c6a5f73514cf0a585f972d2ed907abe3960372bd3b

    • SSDEEP

      24576:+9WC988bu6CocrIn8Ez82LEeb1wk/h48Ocb/B/w3248ULF:+B88TCoyEz821BVlA

    Score
    7/10
    discoveryupx

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks