Overview

overview

8

Static

static

6f5fdbf213...2e.exe

windows7-x64

8

6f5fdbf213...2e.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6f5fdbf2136b8238f2f81fe8288bcd76afc4b0fb22a2194471b6434020371a2e

  • Size

    116KB

  • Sample

    221028-yq1n6sdcf4

  • MD5

    0cc84c9198c0f8114b93b6ad9fc7fea0

  • SHA1

    856783c900821b9ada521077a903146cf26b7547

  • SHA256

    6f5fdbf2136b8238f2f81fe8288bcd76afc4b0fb22a2194471b6434020371a2e

  • SHA512

    5948499c50dfff291fbcf8cb4ce4215843dba48d06fa58b2abdac1f0180d2d55e212f73026a47d58817eca14f4a79bd71c1e3f423edf878e3f75026219a6b264

  • SSDEEP

    1536:IMASiLNFZdO//OE1C90AdDNo75J84L67uKPYgat85tEKcyc2VDcm06tqfVXhwwAF:I3vO//l1uH67T8P7Qga3KcyjbHCg92

Score
8/10
aspackv2persistenceupx

Malware Config

Targets

    • Target

      6f5fdbf2136b8238f2f81fe8288bcd76afc4b0fb22a2194471b6434020371a2e

    • Size

      116KB

    • MD5

      0cc84c9198c0f8114b93b6ad9fc7fea0

    • SHA1

      856783c900821b9ada521077a903146cf26b7547

    • SHA256

      6f5fdbf2136b8238f2f81fe8288bcd76afc4b0fb22a2194471b6434020371a2e

    • SHA512

      5948499c50dfff291fbcf8cb4ce4215843dba48d06fa58b2abdac1f0180d2d55e212f73026a47d58817eca14f4a79bd71c1e3f423edf878e3f75026219a6b264

    • SSDEEP

      1536:IMASiLNFZdO//OE1C90AdDNo75J84L67uKPYgat85tEKcyc2VDcm06tqfVXhwwAF:I3vO//l1uH67T8P7Qga3KcyjbHCg92

    Score
    8/10
    aspackv2persistenceupx

    • ASPack v2.12-2.42

      Detects executables packed with ASPack v2.12-2.42

      aspackv2

    • Executes dropped EXE

    • Sets DLL path for service in the registry

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks