General

  • Target

    c07c1eb0bb63977c03dde0fec2ed01d33170c69affaf48cf2b21794c3d3bcf78

  • Size

    12KB

  • Sample

    241020-b6r1mstcln

  • MD5

    d1d8549b7725897f6838d0b0dadf9acf

  • SHA1

    ee30e32f91d3ac33d746c5cd14ab042e94047a03

  • SHA256

    c07c1eb0bb63977c03dde0fec2ed01d33170c69affaf48cf2b21794c3d3bcf78

  • SHA512

    72ec43e35b1585c065b21980e92779feefc1cf66d9a9270922b9b56bc09f06665666ca3f75ba339154730dd07ffe599719a4148de5ce19721dbe45746e398be1

  • SSDEEP

    384:6K+dKfzQHxFxRmyja4QhiP7UlY/pjKhYsKkyyl7n9ZvD:v+dAURFxna4QAPQlYghxKkyyl7nbD

Malware Config

Targets

    • Target

      c07c1eb0bb63977c03dde0fec2ed01d33170c69affaf48cf2b21794c3d3bcf78

    • Size

      12KB

    • MD5

      d1d8549b7725897f6838d0b0dadf9acf

    • SHA1

      ee30e32f91d3ac33d746c5cd14ab042e94047a03

    • SHA256

      c07c1eb0bb63977c03dde0fec2ed01d33170c69affaf48cf2b21794c3d3bcf78

    • SHA512

      72ec43e35b1585c065b21980e92779feefc1cf66d9a9270922b9b56bc09f06665666ca3f75ba339154730dd07ffe599719a4148de5ce19721dbe45746e398be1

    • SSDEEP

      384:6K+dKfzQHxFxRmyja4QhiP7UlY/pjKhYsKkyyl7n9ZvD:v+dAURFxna4QAPQlYghxKkyyl7nbD

    • Upatre

      Upatre is a generic malware downloader.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks