Overview

overview

7

Static

static

5

4c2c6edd15...4N.exe

windows7-x64

7

4c2c6edd15...4N.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4c2c6edd15d1e701c22cdf5b1dc60c45fea67979786b80851b9c044794ff1284N

  • Size

    558KB

  • Sample

    241031-j77rgssqbx

  • MD5

    7614ef0b5c18fefa14e29d558363fa80

  • SHA1

    a814f68635e27cd299ea83db3c5d02209aa8f5e9

  • SHA256

    4c2c6edd15d1e701c22cdf5b1dc60c45fea67979786b80851b9c044794ff1284

  • SHA512

    cbd7bcd7802e1c49cb756a123c43ae369a10d9c04fc7042f614b412bcea526ccd13cc8832493e0321834bc0174294cb3d4d76d2f5da7f822a65816109ff0d200

  • SSDEEP

    12288:21+vKnoA0cdoIl9jmDBJ4Uh2DEq/51r575O65n9V2:e+vg0HU9EP4UheEq/B79+

Score
7/10
discoverypersistenceupx

Malware Config

Targets

    • Target

      4c2c6edd15d1e701c22cdf5b1dc60c45fea67979786b80851b9c044794ff1284N

    • Size

      558KB

    • MD5

      7614ef0b5c18fefa14e29d558363fa80

    • SHA1

      a814f68635e27cd299ea83db3c5d02209aa8f5e9

    • SHA256

      4c2c6edd15d1e701c22cdf5b1dc60c45fea67979786b80851b9c044794ff1284

    • SHA512

      cbd7bcd7802e1c49cb756a123c43ae369a10d9c04fc7042f614b412bcea526ccd13cc8832493e0321834bc0174294cb3d4d76d2f5da7f822a65816109ff0d200

    • SSDEEP

      12288:21+vKnoA0cdoIl9jmDBJ4Uh2DEq/51r575O65n9V2:e+vg0HU9EP4UheEq/B79+

    Score
    7/10
    discoverypersistenceupx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Drops startup file

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks