Overview

overview

8

Static

static

8

469f40906d...ef.exe

windows7_x64

8

469f40906d...ef.exe

windows10-2004_x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    469f40906d57a73e3b3e27acae7b87e17152b37bd697704b103e54aae46b33ef

  • Size

    1.1MB

  • Sample

    220707-j3qx6sadh5

  • MD5

    00417dc30e77569d13b266af93aaf0a4

  • SHA1

    950651e95a5a877454bd7c799a253fa89e89efd6

  • SHA256

    469f40906d57a73e3b3e27acae7b87e17152b37bd697704b103e54aae46b33ef

  • SHA512

    e3e8453d26d60b12c51182e035586f5daa61953cf9a8790002f86329db9991f8405c1ee78e5e84aabef18ea8a0898790660429c646db3478e2505c8e21e64ca2

Score
8/10
aspackv2

Malware Config

Targets

    • Target

      469f40906d57a73e3b3e27acae7b87e17152b37bd697704b103e54aae46b33ef

    • Size

      1.1MB

    • MD5

      00417dc30e77569d13b266af93aaf0a4

    • SHA1

      950651e95a5a877454bd7c799a253fa89e89efd6

    • SHA256

      469f40906d57a73e3b3e27acae7b87e17152b37bd697704b103e54aae46b33ef

    • SHA512

      e3e8453d26d60b12c51182e035586f5daa61953cf9a8790002f86329db9991f8405c1ee78e5e84aabef18ea8a0898790660429c646db3478e2505c8e21e64ca2

    Score
    8/10
    aspackv2

    • ASPack v2.12-2.42

      Detects executables packed with ASPack v2.12-2.42

      aspackv2

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks