3bc4bec13346d8af99b82beebd0188d94c24dedd5b5476f78809b419675b3934 | Triage

Sharing

General

Target

3bc4bec13346d8af99b82beebd0188d94c24dedd5b5476f78809b419675b3934
Size

3.2MB
Sample

220703-lpkv4seabm
MD5

a0d35fb4a7113744983dc503e5fd233b
SHA1

95e2d0acd76e56bb79daf32fd63fe499117375a8
SHA256

3bc4bec13346d8af99b82beebd0188d94c24dedd5b5476f78809b419675b3934
SHA512

e34eb7337ac99b480e72fca5e6da4e973f7a0f78e40deaf5c55367439e9b6ed3fc7f97de071ba217be454208da7c17f3189aabd64ff7b031802ad940281e5f6c

Score

8^/10

aspackv2 persistence spyware stealer

Malware Config

Targets

- Target
  
  3bc4bec13346d8af99b82beebd0188d94c24dedd5b5476f78809b419675b3934
- Size
  
  3.2MB
- MD5
  
  a0d35fb4a7113744983dc503e5fd233b
- SHA1
  
  95e2d0acd76e56bb79daf32fd63fe499117375a8
- SHA256
  
  3bc4bec13346d8af99b82beebd0188d94c24dedd5b5476f78809b419675b3934
- SHA512
  
  e34eb7337ac99b480e72fca5e6da4e973f7a0f78e40deaf5c55367439e9b6ed3fc7f97de071ba217be454208da7c17f3189aabd64ff7b031802ad940281e5f6c
Score

7^/10

persistence spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Adds Run key to start application
  persistence
- Drops autorun.inf file
  Malware can abuse Windows Autorun to spread further via attached volumes.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Replication Through Removable Media

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Credentials in Files

Discovery

Lateral Movement

Replication Through Removable Media

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

persistencespywarestealer

behavioral2