General

  • Target

    f0a554cf938a2008ebc29fe0430f18056bba571e3dee5b8324b4eddfb73a8e79

  • Size

    12KB

  • Sample

    241021-flgfma1erq

  • MD5

    a3fe123f64c681c5542f8d73236632fc

  • SHA1

    fa097ae0102e873d379b3ca6a77cc67729e0e551

  • SHA256

    f0a554cf938a2008ebc29fe0430f18056bba571e3dee5b8324b4eddfb73a8e79

  • SHA512

    7f6141579ea01d7ae4cf2a22340e60e24d6668258eb275a755e747bee926a3af668dd4765f228f702f565252d392585d89d0ccf2d1aa63cb11ff811fcaa2c536

  • SSDEEP

    384:6K+dKfzQHxFxRmyja4QhiP7UlY/pjKhYsKUAylUmWmJ:v+dAURFxna4QAPQlYghxKUAyl9WmJ

Malware Config

Targets

    • Target

      f0a554cf938a2008ebc29fe0430f18056bba571e3dee5b8324b4eddfb73a8e79

    • Size

      12KB

    • MD5

      a3fe123f64c681c5542f8d73236632fc

    • SHA1

      fa097ae0102e873d379b3ca6a77cc67729e0e551

    • SHA256

      f0a554cf938a2008ebc29fe0430f18056bba571e3dee5b8324b4eddfb73a8e79

    • SHA512

      7f6141579ea01d7ae4cf2a22340e60e24d6668258eb275a755e747bee926a3af668dd4765f228f702f565252d392585d89d0ccf2d1aa63cb11ff811fcaa2c536

    • SSDEEP

      384:6K+dKfzQHxFxRmyja4QhiP7UlY/pjKhYsKUAylUmWmJ:v+dAURFxna4QAPQlYghxKUAyl9WmJ

    • Upatre

      Upatre is a generic malware downloader.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks