Overview

overview

8

Static

static

7

c2bd4a7135...0N.exe

windows7-x64

8

c2bd4a7135...0N.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c2bd4a7135b90c222131c4a8435f2950N.exe

  • Size

    20KB

  • Sample

    240721-pn445sshqp

  • MD5

    c2bd4a7135b90c222131c4a8435f2950

  • SHA1

    b6690d5cf84a24cd03d79a8675299a09acb11c14

  • SHA256

    21d3507a9ba379f2cb7751c8b0fc74d9b6464d256a493489885d35b312519235

  • SHA512

    e59b1938684dafb06c294a957618aef1122751bf582ba9ff8c8de9a63d510e54d26189802e38d17efd4b92094bfdcc893f588f241854f639e7f5185ab9ebb7b5

  • SSDEEP

    384:+J5+c5mibCpKAjndr3Vo4G/usaNJawcudoD7UXlOIJqN:uAcYimoqdm9gnbcuyD7U1O

Score
8/10
evasionupx

Malware Config

Targets

    • Target

      c2bd4a7135b90c222131c4a8435f2950N.exe

    • Size

      20KB

    • MD5

      c2bd4a7135b90c222131c4a8435f2950

    • SHA1

      b6690d5cf84a24cd03d79a8675299a09acb11c14

    • SHA256

      21d3507a9ba379f2cb7751c8b0fc74d9b6464d256a493489885d35b312519235

    • SHA512

      e59b1938684dafb06c294a957618aef1122751bf582ba9ff8c8de9a63d510e54d26189802e38d17efd4b92094bfdcc893f588f241854f639e7f5185ab9ebb7b5

    • SSDEEP

      384:+J5+c5mibCpKAjndr3Vo4G/usaNJawcudoD7UXlOIJqN:uAcYimoqdm9gnbcuyD7U1O

    Score
    8/10
    evasionupx

    • Sets file to hidden

      Modifies file attributes to stop it showing in Explorer etc.

      evasion

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks