Overview

overview

8

Static

static

1

sample.html

windows7-x64

1

sample.html

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    sample

  • Size

    188KB

  • Sample

    240220-vvfm1scf35

  • MD5

    25d4e6183abbece5811037a513dd6ec0

  • SHA1

    a2dd623fb0339bca5c5ce0775ac995fc2a074476

  • SHA256

    ef16addb4df05233277a29fdd00fb314a6ebb54d755ad63b6309a009e08b2721

  • SHA512

    885102a275a81de6f664d6e104a9ac3de97b763ff02061f47c747daa3885950ea59a6a1bf69353dc1328a6d4c85dd16bbe88dcbc22808e37c7b430cd567b0b60

  • SSDEEP

    3072:A+86WghQdxomjwe78c5yDf7YPBCn522xl3yqDpSqFvr+zqXMpP73Qq4qcuIsnYdY:A+VWghQdxomjwe78c5yDf7YPBCn522xS

Score
8/10
upx

Malware Config

Targets

    • Target

      sample

    • Size

      188KB

    • MD5

      25d4e6183abbece5811037a513dd6ec0

    • SHA1

      a2dd623fb0339bca5c5ce0775ac995fc2a074476

    • SHA256

      ef16addb4df05233277a29fdd00fb314a6ebb54d755ad63b6309a009e08b2721

    • SHA512

      885102a275a81de6f664d6e104a9ac3de97b763ff02061f47c747daa3885950ea59a6a1bf69353dc1328a6d4c85dd16bbe88dcbc22808e37c7b430cd567b0b60

    • SSDEEP

      3072:A+86WghQdxomjwe78c5yDf7YPBCn522xl3yqDpSqFvr+zqXMpP73Qq4qcuIsnYdY:A+VWghQdxomjwe78c5yDf7YPBCn522xS

    Score
    8/10
    upx

    • Downloads MZ/PE file

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks