General

  • Target

    b664c98845ceadb9bccbcfc657a28b77d240cb37f6f0a2fa158fecefa4107dbc

  • Size

    37KB

  • Sample

    241201-c2ys3ayldl

  • MD5

    a0ac9d59b298230d3a5e737f268007b6

  • SHA1

    3c0db5142bb28b2b49e9743c25ed4d084981fc26

  • SHA256

    b664c98845ceadb9bccbcfc657a28b77d240cb37f6f0a2fa158fecefa4107dbc

  • SHA512

    5f9130bac208eae021ca81e7e0a24444e3de602111718951fa6edc93ea2ab686ea01b70ea46a153941847ce09202e4f7cd7e813dd3af6f7db63b9a2af4405fef

  • SSDEEP

    768:kf1Y9RRw/dUT6vurGd/pkUOyGAv+rh95k5mw0+7Mb:GY9jw/dUT62rGdiUOWWrNmT7Mb

Malware Config

Targets

    • Target

      b664c98845ceadb9bccbcfc657a28b77d240cb37f6f0a2fa158fecefa4107dbc

    • Size

      37KB

    • MD5

      a0ac9d59b298230d3a5e737f268007b6

    • SHA1

      3c0db5142bb28b2b49e9743c25ed4d084981fc26

    • SHA256

      b664c98845ceadb9bccbcfc657a28b77d240cb37f6f0a2fa158fecefa4107dbc

    • SHA512

      5f9130bac208eae021ca81e7e0a24444e3de602111718951fa6edc93ea2ab686ea01b70ea46a153941847ce09202e4f7cd7e813dd3af6f7db63b9a2af4405fef

    • SSDEEP

      768:kf1Y9RRw/dUT6vurGd/pkUOyGAv+rh95k5mw0+7Mb:GY9jw/dUT62rGdiUOWWrNmT7Mb

    • Upatre

      Upatre is a generic malware downloader.

    • Upatre family

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks