Overview

overview

10

Static

static

3

8b32579f30...4e.exe

windows7-x64

10

8b32579f30...4e.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8b32579f300e50686f34123cdaba344e

  • Size

    12KB

  • Sample

    231222-pc9v9acad6

  • MD5

    8b32579f300e50686f34123cdaba344e

  • SHA1

    f52cc319b24dcc82a509f662e2e7c57598c3caad

  • SHA256

    dd89acf6a917c09c6cadd2a9f6ce1d2b26c8524664da43f95bf7e7db37340ce0

  • SHA512

    53073855c5cf2a87ef77a585b416ef8b296a42ca1f5a47afe06297eef78bb8198081a5ce04a906e3a1167186620ba33ecbadead943219d1f4bc817d654e30cf1

  • SSDEEP

    384:6K+dKfzQHxFxRmyja4QhiP7UlY/pjKkFlplVDuyk:v+dAURFxna4QAPQlYgkFlplVDuyk

Score
10/10
upatredownloader

Malware Config

Targets

    • Target

      8b32579f300e50686f34123cdaba344e

    • Size

      12KB

    • MD5

      8b32579f300e50686f34123cdaba344e

    • SHA1

      f52cc319b24dcc82a509f662e2e7c57598c3caad

    • SHA256

      dd89acf6a917c09c6cadd2a9f6ce1d2b26c8524664da43f95bf7e7db37340ce0

    • SHA512

      53073855c5cf2a87ef77a585b416ef8b296a42ca1f5a47afe06297eef78bb8198081a5ce04a906e3a1167186620ba33ecbadead943219d1f4bc817d654e30cf1

    • SSDEEP

      384:6K+dKfzQHxFxRmyja4QhiP7UlY/pjKkFlplVDuyk:v+dAURFxna4QAPQlYgkFlplVDuyk

    Score
    10/10
    upatredownloader

    • Upatre

      Upatre is a generic malware downloader.

      downloaderupatre

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks