General

  • Target

    8b3dc738630960af2fa7f7b56e753d693da8ebe38c273039e25086e2305f020f

  • Size

    36KB

  • Sample

    241201-bbwqca1ma1

  • MD5

    ecb28c3e5cc4c9eb89c4a12558fce6d5

  • SHA1

    3bfdde291fd1fdb84bc4bbbfe14afbdb76b63dd3

  • SHA256

    8b3dc738630960af2fa7f7b56e753d693da8ebe38c273039e25086e2305f020f

  • SHA512

    282426245c1efd8cab35ce73e626c7dd9835bb14c3cb121ec552b730845cded83eea72a45d40022dfef91c04da29971ca0a248eff97657ddadabe5d1e3b00886

  • SSDEEP

    768:kf1Y9RRw/dUT6vurGd/pkUOyGAv+rh95k5mwGx:GY9jw/dUT62rGdiUOWWrNmE

Malware Config

Targets

    • Target

      8b3dc738630960af2fa7f7b56e753d693da8ebe38c273039e25086e2305f020f

    • Size

      36KB

    • MD5

      ecb28c3e5cc4c9eb89c4a12558fce6d5

    • SHA1

      3bfdde291fd1fdb84bc4bbbfe14afbdb76b63dd3

    • SHA256

      8b3dc738630960af2fa7f7b56e753d693da8ebe38c273039e25086e2305f020f

    • SHA512

      282426245c1efd8cab35ce73e626c7dd9835bb14c3cb121ec552b730845cded83eea72a45d40022dfef91c04da29971ca0a248eff97657ddadabe5d1e3b00886

    • SSDEEP

      768:kf1Y9RRw/dUT6vurGd/pkUOyGAv+rh95k5mwGx:GY9jw/dUT62rGdiUOWWrNmE

    • Upatre

      Upatre is a generic malware downloader.

    • Upatre family

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks