Overview

overview

8

Static

static

d9c45234db...68.exe

windows7-x64

8

d9c45234db...68.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    d9c45234db00dfcda215cb700b83fe30212496d20f628f2724cdba39df170c68

  • Size

    140KB

  • Sample

    221003-xr6fdabgg7

  • MD5

    4fb19914b081fbc332c272db414b7ff0

  • SHA1

    9368e6c3e2d32cb5f7a40c671854e016820e1174

  • SHA256

    d9c45234db00dfcda215cb700b83fe30212496d20f628f2724cdba39df170c68

  • SHA512

    a6bc35c14e35c11ac6148c295ec088c281dcc56a9ab0b419ea6aac08149c186d50d7edec474d90404d45c54d9e7f4cf9c853fecb4bcad9956966662450e56f38

  • SSDEEP

    3072:9bxhtXWtHzgOerV7FljNiwmsGcMlNxuK80CCa1Ff:9bTtXDdxjNGsgl2K8kS

Score
8/10
aspackv2persistenceupx

Malware Config

Targets

    • Target

      d9c45234db00dfcda215cb700b83fe30212496d20f628f2724cdba39df170c68

    • Size

      140KB

    • MD5

      4fb19914b081fbc332c272db414b7ff0

    • SHA1

      9368e6c3e2d32cb5f7a40c671854e016820e1174

    • SHA256

      d9c45234db00dfcda215cb700b83fe30212496d20f628f2724cdba39df170c68

    • SHA512

      a6bc35c14e35c11ac6148c295ec088c281dcc56a9ab0b419ea6aac08149c186d50d7edec474d90404d45c54d9e7f4cf9c853fecb4bcad9956966662450e56f38

    • SSDEEP

      3072:9bxhtXWtHzgOerV7FljNiwmsGcMlNxuK80CCa1Ff:9bTtXDdxjNGsgl2K8kS

    Score
    8/10
    aspackv2persistenceupx

    • ASPack v2.12-2.42

      Detects executables packed with ASPack v2.12-2.42

      aspackv2

    • Executes dropped EXE

    • Sets DLL path for service in the registry

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks