ce9bb0eab875fe1753eeee55d51bb4905be9bbfa76afe413c923f3f7676bfedb | Triage

Submit
Reports

Overview

overview

8

Static

static

8

ce9bb0eab8...db.exe

windows7-x64

8

ce9bb0eab8...db.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

Target

ce9bb0eab875fe1753eeee55d51bb4905be9bbfa76afe413c923f3f7676bfedb
Size

83KB
Sample

221002-hj4jgsdggm
MD5

719006c145e2fa55b205c80724a89abc
SHA1

a51df7d2c302e8ce29fe7efb8a87e9ea03354709
SHA256

ce9bb0eab875fe1753eeee55d51bb4905be9bbfa76afe413c923f3f7676bfedb
SHA512

5c6d5658db437ac10a686935fec78757a950ebd95cff5f5809a9d3f3fe0d769685cfcd2e03df05e093fd8f0850e10169b519dc1c5585904695399863919854a2
SSDEEP

1536:EfGYy/wN5lrZ2AEZyhyGCoyaYZkVfa/nfqakQJ94:Oy/wL2AEyAGOaYZkVSqakQg

Score

8^/10

aspackv2 persistence

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

ce9bb0eab875fe1753eeee55d51bb4905be9bbfa76afe413c923f3f7676bfedb.exe

Resource

win7-20220812-en

aspackv2 persistence

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

ce9bb0eab875fe1753eeee55d51bb4905be9bbfa76afe413c923f3f7676bfedb.exe

Resource

win10v2004-20220812-en

aspackv2 persistence

windows10-2004-x64

11 signatures

150 seconds

Malware Config

Targets

- Target
  
  ce9bb0eab875fe1753eeee55d51bb4905be9bbfa76afe413c923f3f7676bfedb
- Size
  
  83KB
- MD5
  
  719006c145e2fa55b205c80724a89abc
- SHA1
  
  a51df7d2c302e8ce29fe7efb8a87e9ea03354709
- SHA256
  
  ce9bb0eab875fe1753eeee55d51bb4905be9bbfa76afe413c923f3f7676bfedb
- SHA512
  
  5c6d5658db437ac10a686935fec78757a950ebd95cff5f5809a9d3f3fe0d769685cfcd2e03df05e093fd8f0850e10169b519dc1c5585904695399863919854a2
- SSDEEP
  
  1536:EfGYy/wN5lrZ2AEZyhyGCoyaYZkVfa/nfqakQJ94:Oy/wL2AEyAGOaYZkVSqakQg
Score

8^/10

aspackv2 persistence
- ASPack v2.12-2.42
  Detects executables packed with ASPack v2.12-2.42
  aspackv2
- Adds policy Run key to start application
  persistence
- Drops file in Drivers directory
- Executes dropped EXE
- Deletes itself
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

aspackv2persistence

behavioral2

aspackv2persistence

© 2018-2025

Terms | Privacy