General

  • Target

    d909b9679d24c9826912193eec624363753f67aca0d614248e1601c49ce1a806N.exe

  • Size

    13KB

  • Sample

    241208-fcmahstkes

  • MD5

    f6dee26e462aa2e5fbc380cae996d3f0

  • SHA1

    7191102b294e3a1d45c2d0230afe26ea390bbc18

  • SHA256

    d909b9679d24c9826912193eec624363753f67aca0d614248e1601c49ce1a806

  • SHA512

    7ecd05b0437ddd055ba354ca82b2151dba7a42022bf7f428c6bf12342d127950ba9f5614dbdc7ba9aabdfa100e65c4e39038e3bc355b9f29e472b838fa3ac78c

  • SSDEEP

    384:6K+dKfzQHxFxRmyja4QhiP7UlY/pjKhYsKUAylUmWmtsh:v+dAURFxna4QAPQlYghxKUAyl9Wm4

Malware Config

Targets

    • Target

      d909b9679d24c9826912193eec624363753f67aca0d614248e1601c49ce1a806N.exe

    • Size

      13KB

    • MD5

      f6dee26e462aa2e5fbc380cae996d3f0

    • SHA1

      7191102b294e3a1d45c2d0230afe26ea390bbc18

    • SHA256

      d909b9679d24c9826912193eec624363753f67aca0d614248e1601c49ce1a806

    • SHA512

      7ecd05b0437ddd055ba354ca82b2151dba7a42022bf7f428c6bf12342d127950ba9f5614dbdc7ba9aabdfa100e65c4e39038e3bc355b9f29e472b838fa3ac78c

    • SSDEEP

      384:6K+dKfzQHxFxRmyja4QhiP7UlY/pjKhYsKUAylUmWmtsh:v+dAURFxna4QAPQlYghxKUAyl9Wm4

    • Upatre

      Upatre is a generic malware downloader.

    • Upatre family

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks