Overview

overview

7

Static

static

7

01cfe2ce2b...1f.exe

windows7-x64

7

01cfe2ce2b...1f.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    01cfe2ce2b9e575d8986e8e845a9701f

  • Size

    30KB

  • Sample

    231229-x8w82afad6

  • MD5

    01cfe2ce2b9e575d8986e8e845a9701f

  • SHA1

    7c2e0a61eedb8e5093791c1735d2d18636d1eb00

  • SHA256

    9ec070bb0e4ef57a5bb44d205c70fc5fa2ff212cce9c38cf01d824bd7d98b254

  • SHA512

    85a878641318d95231fef0aed72e1da81856eba49eee7751859d10bb30e86eea559b7c64fc6585b877a87ef3ed56fe70e256a56db1cb7b42734deb251b0b058f

  • SSDEEP

    384:TctfxTTGVTrCleF+qHUvZ/PODQ8BJ7pKNvkyUDqMk93yrrPFc2xYSTxQu/Z2z:0TTGEIF96qQ8MLUDdygr9YKQ

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      01cfe2ce2b9e575d8986e8e845a9701f

    • Size

      30KB

    • MD5

      01cfe2ce2b9e575d8986e8e845a9701f

    • SHA1

      7c2e0a61eedb8e5093791c1735d2d18636d1eb00

    • SHA256

      9ec070bb0e4ef57a5bb44d205c70fc5fa2ff212cce9c38cf01d824bd7d98b254

    • SHA512

      85a878641318d95231fef0aed72e1da81856eba49eee7751859d10bb30e86eea559b7c64fc6585b877a87ef3ed56fe70e256a56db1cb7b42734deb251b0b058f

    • SSDEEP

      384:TctfxTTGVTrCleF+qHUvZ/PODQ8BJ7pKNvkyUDqMk93yrrPFc2xYSTxQu/Z2z:0TTGEIF96qQ8MLUDdygr9YKQ

    Score
    7/10
    discoveryupx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks