Overview

overview

7

Static

static

5

8d27131237...6b.exe

windows7-x64

7

8d27131237...6b.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8d27131237ee0efb6dffef7f123b27c53d7222181ee7f77a21c87c733f24416b

  • Size

    13KB

  • Sample

    241005-3vwm8swfpl

  • MD5

    1ff4e9eb071c0da344a539da517bf364

  • SHA1

    908ac71124743ad9b1244d8b84139ffb3d3726eb

  • SHA256

    8d27131237ee0efb6dffef7f123b27c53d7222181ee7f77a21c87c733f24416b

  • SHA512

    3f1e562ec2022714f45ab58953b5090914c0f2e3677e254142fe723bc72fb10277e24af71be68bd4621f5b0cb417ea2b425038a75d30b2222e630e06706f076a

  • SSDEEP

    192:pjUWFh4fvYGIQnsA6psQ56uFaNJhLkwcud2DH9VwGfctQEAC5Es9Gsj5Efx8X5d8:5KE7pD/aNJawcudoD7U55Es9GsGyU

Score
7/10
discoverypersistenceupx

Malware Config

Targets

    • Target

      8d27131237ee0efb6dffef7f123b27c53d7222181ee7f77a21c87c733f24416b

    • Size

      13KB

    • MD5

      1ff4e9eb071c0da344a539da517bf364

    • SHA1

      908ac71124743ad9b1244d8b84139ffb3d3726eb

    • SHA256

      8d27131237ee0efb6dffef7f123b27c53d7222181ee7f77a21c87c733f24416b

    • SHA512

      3f1e562ec2022714f45ab58953b5090914c0f2e3677e254142fe723bc72fb10277e24af71be68bd4621f5b0cb417ea2b425038a75d30b2222e630e06706f076a

    • SSDEEP

      192:pjUWFh4fvYGIQnsA6psQ56uFaNJhLkwcud2DH9VwGfctQEAC5Es9Gsj5Efx8X5d8:5KE7pD/aNJawcudoD7U55Es9GsGyU

    Score
    7/10
    discoverypersistenceupx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks