General

  • Target

    34daf203818417b17066242a1c932ce558a54ecbb46c1843f49bc98b9d321a7e

  • Size

    13KB

  • Sample

    241216-zw7kcazpdy

  • MD5

    5fb56f00288ea7ab5851367b7a103707

  • SHA1

    37aa6e7343a797daf933cb12028649b90dbbb6fc

  • SHA256

    34daf203818417b17066242a1c932ce558a54ecbb46c1843f49bc98b9d321a7e

  • SHA512

    8d6dabc95cc346fedbd1c42b2ff3b428d56ae4d63bd418542200dc35d6209613a0c7fbf670260fb1a9d65769b7f053d0b0de24821b3af6bfbc73445c4ecac6d3

  • SSDEEP

    384:6K+dKfzQHxFxRmyja4QhiP7UlY/pjKhYsKUAylUmWmtssN:v+dAURFxna4QAPQlYghxKUAyl9WmHN

Malware Config

Targets

    • Target

      34daf203818417b17066242a1c932ce558a54ecbb46c1843f49bc98b9d321a7e

    • Size

      13KB

    • MD5

      5fb56f00288ea7ab5851367b7a103707

    • SHA1

      37aa6e7343a797daf933cb12028649b90dbbb6fc

    • SHA256

      34daf203818417b17066242a1c932ce558a54ecbb46c1843f49bc98b9d321a7e

    • SHA512

      8d6dabc95cc346fedbd1c42b2ff3b428d56ae4d63bd418542200dc35d6209613a0c7fbf670260fb1a9d65769b7f053d0b0de24821b3af6bfbc73445c4ecac6d3

    • SSDEEP

      384:6K+dKfzQHxFxRmyja4QhiP7UlY/pjKhYsKUAylUmWmtssN:v+dAURFxna4QAPQlYghxKUAyl9WmHN

    • Upatre

      Upatre is a generic malware downloader.

    • Upatre family

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks