3c02e2346cf9279bfa0995bcc378441a57eafd5945eea6a7cc564cf1a4965816 | Triage

Sharing

General

Target

3c02e2346cf9279bfa0995bcc378441a57eafd5945eea6a7cc564cf1a4965816
Size

1.5MB
Sample

220703-kvlh6acfgp
MD5

ce13fc2b64fd93a16f00eaa0bf559e2a
SHA1

b1141d10272b3d494eb11b04a1a8c459a6023184
SHA256

3c02e2346cf9279bfa0995bcc378441a57eafd5945eea6a7cc564cf1a4965816
SHA512

95a7b9a055170351be90c7234e55f8e9d40e015e74e485b10a9b77f382bb75f494681560098fd18121ae893515e5598b1431cc4e5f865f99c7441037d281cec8

Score

8^/10

aspackv2 persistence spyware stealer

Malware Config

Targets

- Target
  
  3c02e2346cf9279bfa0995bcc378441a57eafd5945eea6a7cc564cf1a4965816
- Size
  
  1.5MB
- MD5
  
  ce13fc2b64fd93a16f00eaa0bf559e2a
- SHA1
  
  b1141d10272b3d494eb11b04a1a8c459a6023184
- SHA256
  
  3c02e2346cf9279bfa0995bcc378441a57eafd5945eea6a7cc564cf1a4965816
- SHA512
  
  95a7b9a055170351be90c7234e55f8e9d40e015e74e485b10a9b77f382bb75f494681560098fd18121ae893515e5598b1431cc4e5f865f99c7441037d281cec8
Score

7^/10

persistence spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Adds Run key to start application
  persistence
- Drops autorun.inf file
  Malware can abuse Windows Autorun to spread further via attached volumes.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Replication Through Removable Media

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Credentials in Files

Discovery

Lateral Movement

Replication Through Removable Media

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

persistencespywarestealer

behavioral2