General

  • Target

    a6ca305489227b750488c24b01956340696edcafc954e68338e6ded4094d8fbbN

  • Size

    31KB

  • Sample

    241105-b91f7asapc

  • MD5

    b8c3105a2b4c3027de978b2842127e50

  • SHA1

    3cd5a192e894497177593e550d68a80e53e53bae

  • SHA256

    a6ca305489227b750488c24b01956340696edcafc954e68338e6ded4094d8fbb

  • SHA512

    f17a9538644b02804f2a1ee272d47e33986accee6512a888ec6f174cfc947192a61822a5d04f64387b2d341e6743a2a05f069c44a1da845287e42d353633e445

  • SSDEEP

    768:kf1Y9RRw/dUT6vurGd/pkUOyGAv+rh95k5N:GY9jw/dUT62rGdiUOWWrNmN

Malware Config

Targets

    • Target

      a6ca305489227b750488c24b01956340696edcafc954e68338e6ded4094d8fbbN

    • Size

      31KB

    • MD5

      b8c3105a2b4c3027de978b2842127e50

    • SHA1

      3cd5a192e894497177593e550d68a80e53e53bae

    • SHA256

      a6ca305489227b750488c24b01956340696edcafc954e68338e6ded4094d8fbb

    • SHA512

      f17a9538644b02804f2a1ee272d47e33986accee6512a888ec6f174cfc947192a61822a5d04f64387b2d341e6743a2a05f069c44a1da845287e42d353633e445

    • SSDEEP

      768:kf1Y9RRw/dUT6vurGd/pkUOyGAv+rh95k5N:GY9jw/dUT62rGdiUOWWrNmN

    • Upatre

      Upatre is a generic malware downloader.

    • Upatre family

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks