Overview

overview

7

Static

static

7

d528379ab7...91.exe

windows7-x64

7

d528379ab7...91.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    d528379ab7973f3292f86d4aa801c791

  • Size

    15KB

  • Sample

    240319-en91aahg6v

  • MD5

    d528379ab7973f3292f86d4aa801c791

  • SHA1

    45989043a1943a251ace47704711471e89df254b

  • SHA256

    fb2ced7e405714013d324f87bf88e314b519a929c8ab820a452f15fc959e3081

  • SHA512

    965c96f012fb77eb0ae30c6f8d3767e2fb4aa894c453bd1bfabf8794b0f100b18d407d0dc64acca2d750f1011beb41939db99a3f21a1fe5244842a7fea070ed3

  • SSDEEP

    384:jAyuBUofjVgFC9PN10n8D40yGr1IgK4mV:sysUVFk0U40lIgh

Score
7/10
collectionpersistenceupx

Malware Config

Targets

    • Target

      d528379ab7973f3292f86d4aa801c791

    • Size

      15KB

    • MD5

      d528379ab7973f3292f86d4aa801c791

    • SHA1

      45989043a1943a251ace47704711471e89df254b

    • SHA256

      fb2ced7e405714013d324f87bf88e314b519a929c8ab820a452f15fc959e3081

    • SHA512

      965c96f012fb77eb0ae30c6f8d3767e2fb4aa894c453bd1bfabf8794b0f100b18d407d0dc64acca2d750f1011beb41939db99a3f21a1fe5244842a7fea070ed3

    • SSDEEP

      384:jAyuBUofjVgFC9PN10n8D40yGr1IgK4mV:sysUVFk0U40lIgh

    Score
    7/10
    collectionpersistenceupx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Accesses Microsoft Outlook profiles

      collection

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks