Overview

overview

7

Static

static

3

ca818aea3d...2a.exe

windows7-x64

7

ca818aea3d...2a.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    ca818aea3dd2279856aeff636dd1232a

  • Size

    2.5MB

  • Sample

    240315-e9gwmagd4s

  • MD5

    ca818aea3dd2279856aeff636dd1232a

  • SHA1

    a1a2eb56612c92eae0b46af7f01067193d40dd0b

  • SHA256

    3a8ea2fa0d4e97188e2ad8aae575c3c7a95cf16d4d4903e1fb9b73d7459abbb8

  • SHA512

    870349c7451f0668e8849039e0afa4e1b35d3657ccc32e8f3d24f87dfd525a4f54b46f4dbf3f285fdbaac806fd93c9533165d74595d549bffe84f68d92128be6

  • SSDEEP

    49152:5UUWLPMGyxBsliDJrqIB2xo6W9ELsTdxDIH0xsMjaSdU8UkqONFJbZDST2dQEZ82:5UJLP4IliV666W9ELsTdFIHojRb51nJD

Score
7/10
upx

Malware Config

Targets

    • Target

      ca818aea3dd2279856aeff636dd1232a

    • Size

      2.5MB

    • MD5

      ca818aea3dd2279856aeff636dd1232a

    • SHA1

      a1a2eb56612c92eae0b46af7f01067193d40dd0b

    • SHA256

      3a8ea2fa0d4e97188e2ad8aae575c3c7a95cf16d4d4903e1fb9b73d7459abbb8

    • SHA512

      870349c7451f0668e8849039e0afa4e1b35d3657ccc32e8f3d24f87dfd525a4f54b46f4dbf3f285fdbaac806fd93c9533165d74595d549bffe84f68d92128be6

    • SSDEEP

      49152:5UUWLPMGyxBsliDJrqIB2xo6W9ELsTdxDIH0xsMjaSdU8UkqONFJbZDST2dQEZ82:5UJLP4IliV666W9ELsTdFIHojRb51nJD

    Score
    7/10
    upx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks