Overview

overview

7

Static

static

7

c6e458bbf3...49.exe

windows7-x64

7

c6e458bbf3...49.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c6e458bbf3d305183e77ac773fd6de49

  • Size

    494KB

  • Sample

    240313-z9dt7ahd2x

  • MD5

    c6e458bbf3d305183e77ac773fd6de49

  • SHA1

    e7058f3a382502b4f6f318c3968d9efa188550dc

  • SHA256

    41bda275eeca7e4bb253a9b375413aada75a26435fa628e1de639477334e8b4f

  • SHA512

    d9b350d38b1731eba32f50d9c2f1d6d973d6767f6c0678717886db9225ccc92119dbcd5f606a55da4cd6fd163db02339af4c1d5d04e23e0a7f09a9ebb489afab

  • SSDEEP

    12288:nsQUVM3VUvISh1xZHNw3oi16cbuKupxMM0/zFHX5GyWai4CoS:sQzINZHNw3/1HPqcpHQy

Score
7/10
persistenceupx

Malware Config

Targets

    • Target

      c6e458bbf3d305183e77ac773fd6de49

    • Size

      494KB

    • MD5

      c6e458bbf3d305183e77ac773fd6de49

    • SHA1

      e7058f3a382502b4f6f318c3968d9efa188550dc

    • SHA256

      41bda275eeca7e4bb253a9b375413aada75a26435fa628e1de639477334e8b4f

    • SHA512

      d9b350d38b1731eba32f50d9c2f1d6d973d6767f6c0678717886db9225ccc92119dbcd5f606a55da4cd6fd163db02339af4c1d5d04e23e0a7f09a9ebb489afab

    • SSDEEP

      12288:nsQUVM3VUvISh1xZHNw3oi16cbuKupxMM0/zFHX5GyWai4CoS:sQzINZHNw3/1HPqcpHQy

    Score
    7/10
    persistenceupx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks