Overview

overview

8

Static

static

1ac73d515c...7a.exe

windows7_x64

8

1ac73d515c...7a.exe

windows10-2004_x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1ac73d515c89d782e889ea9ba68f0b0eb3a80fb15247ecc81841613d8a057e7a

  • Size

    52KB

  • Sample

    220705-bqm2racfhl

  • MD5

    017dc4ca721b009fc192e818168776fd

  • SHA1

    61a982bbc9dd517badcbc1dbcfff49761fcb5190

  • SHA256

    1ac73d515c89d782e889ea9ba68f0b0eb3a80fb15247ecc81841613d8a057e7a

  • SHA512

    f15907d9013c93495c6414e63c73455515aa7345afbc52db821855d5ea9c1d0aad9994234e9364d9ae8a737265cf4bc2b197b6cf84bb8ad907b9ee4afbce9ca5

Score
8/10
aspackv2

Malware Config

Targets

    • Target

      1ac73d515c89d782e889ea9ba68f0b0eb3a80fb15247ecc81841613d8a057e7a

    • Size

      52KB

    • MD5

      017dc4ca721b009fc192e818168776fd

    • SHA1

      61a982bbc9dd517badcbc1dbcfff49761fcb5190

    • SHA256

      1ac73d515c89d782e889ea9ba68f0b0eb3a80fb15247ecc81841613d8a057e7a

    • SHA512

      f15907d9013c93495c6414e63c73455515aa7345afbc52db821855d5ea9c1d0aad9994234e9364d9ae8a737265cf4bc2b197b6cf84bb8ad907b9ee4afbce9ca5

    Score
    8/10
    aspackv2

    • ASPack v2.12-2.42

      Detects executables packed with ASPack v2.12-2.42

      aspackv2

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks