upatre | 45ecf24b2acb7608dd74e2b408ab182f3b3632e780ffd414ab6dc30f328e08f6 | Triage

Submit
Reports

Overview

overview

Static

static

3

45ecf24b2a...f6.exe

windows7-x64

45ecf24b2a...f6.exe

windows10-2004-x64

Sharing

General

Target

45ecf24b2acb7608dd74e2b408ab182f3b3632e780ffd414ab6dc30f328e08f6
Size

102KB
Sample

240328-yd535afe53
MD5

4dc86e0363972bd701ec2b95a083fc55
SHA1

780a0a77ab9e685750423934f1cceaadfffac614
SHA256

45ecf24b2acb7608dd74e2b408ab182f3b3632e780ffd414ab6dc30f328e08f6
SHA512

df40f443afa82a67cd5aecc26a2a894f3a9eb06abb0d8f06595900d3d2be46e690aa64f8de4eeafb4e8991e3b50f8fcd40b91d07ee3af9a9d2427fe6b4ce8605
SSDEEP

1536:iY9jw/dUT62rGdiUOWWrMu8i8N8tz8b8XtP8XtH8XtgUm2PmsZwGMTK2:iY9CUT62/UOVMu8i8N898b8XN8X98XGT

Score

10^/10

upatre downloader

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

45ecf24b2acb7608dd74e2b408ab182f3b3632e780ffd414ab6dc30f328e08f6.exe

Resource

win7-20240221-en

upatre downloader

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

45ecf24b2acb7608dd74e2b408ab182f3b3632e780ffd414ab6dc30f328e08f6.exe

Resource

win10v2004-20240226-en

upatre downloader

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  45ecf24b2acb7608dd74e2b408ab182f3b3632e780ffd414ab6dc30f328e08f6
- Size
  
  102KB
- MD5
  
  4dc86e0363972bd701ec2b95a083fc55
- SHA1
  
  780a0a77ab9e685750423934f1cceaadfffac614
- SHA256
  
  45ecf24b2acb7608dd74e2b408ab182f3b3632e780ffd414ab6dc30f328e08f6
- SHA512
  
  df40f443afa82a67cd5aecc26a2a894f3a9eb06abb0d8f06595900d3d2be46e690aa64f8de4eeafb4e8991e3b50f8fcd40b91d07ee3af9a9d2427fe6b4ce8605
- SSDEEP
  
  1536:iY9jw/dUT62rGdiUOWWrMu8i8N8tz8b8XtP8XtH8XtgUm2PmsZwGMTK2:iY9CUT62/UOVMu8i8N898b8XN8X98XGT
Score

10^/10

upatre downloader
- Upatre
  Upatre is a generic malware downloader.
  downloader upatre
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

upatredownloader

behavioral2

upatredownloader

© 2018-2024

Terms | Privacy