Overview

overview

7

Static

static

7

04b8b9764c...42.exe

windows7-x64

7

04b8b9764c...42.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    04b8b9764c666db9287c2eb7bf7cc242

  • Size

    29KB

  • Sample

    231229-1ktpsaagf6

  • MD5

    04b8b9764c666db9287c2eb7bf7cc242

  • SHA1

    f6938fbd8c71701a8c2e9ae5c00fd3ea4f97fafe

  • SHA256

    9d7c09f44386dfeaec0cdd70c0f37260046743b9dc011f0021d8a9bf02127883

  • SHA512

    9dd33a2b5ef989f23a6bf86069241a339a490e735dc211aae6fcfa17798ceb0d50015332c937cc2b5d1c011b72427bd317d19d6fcb84e4d56aa53e1855dde857

  • SSDEEP

    768:3O2CPEcvCZhE1Bx9QBR7I7R66ybm4LzX9reAq91d:3O2CPEjh4qHsVsbVXZG9

Score
7/10
upx

Malware Config

Targets

    • Target

      04b8b9764c666db9287c2eb7bf7cc242

    • Size

      29KB

    • MD5

      04b8b9764c666db9287c2eb7bf7cc242

    • SHA1

      f6938fbd8c71701a8c2e9ae5c00fd3ea4f97fafe

    • SHA256

      9d7c09f44386dfeaec0cdd70c0f37260046743b9dc011f0021d8a9bf02127883

    • SHA512

      9dd33a2b5ef989f23a6bf86069241a339a490e735dc211aae6fcfa17798ceb0d50015332c937cc2b5d1c011b72427bd317d19d6fcb84e4d56aa53e1855dde857

    • SSDEEP

      768:3O2CPEcvCZhE1Bx9QBR7I7R66ybm4LzX9reAq91d:3O2CPEjh4qHsVsbVXZG9

    Score
    7/10
    upx

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks