Overview

overview

8

Static

static

8

46e1db5142...b4.exe

windows7-x64

8

46e1db5142...b4.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    46e1db5142ae4987ec6dd9c0c32490e0aba7fda0ff7b404c551b7b8395f061b4

  • Size

    320KB

  • Sample

    221030-cgh7wagbf4

  • MD5

    a2f0599aa32b7f65ed68ee0dd585de30

  • SHA1

    ecc9828adc6a561a39b7a5021a410a97c3cf4e2f

  • SHA256

    46e1db5142ae4987ec6dd9c0c32490e0aba7fda0ff7b404c551b7b8395f061b4

  • SHA512

    4849a9f9327777ec7dbc828fd184f111922ea16c1d7089e13bda131784bf384826ed3e040e078d53ceb0d0770e89db034b216407b67d56f1972bbc1b487f90ab

  • SSDEEP

    6144:eQVH3/4YI7OFpm1MxUyRzoVOBlYQflIG:e2HP4B7VM6++OBlYER

Score
8/10
aspackv2persistenceupx

Malware Config

Targets

    • Target

      46e1db5142ae4987ec6dd9c0c32490e0aba7fda0ff7b404c551b7b8395f061b4

    • Size

      320KB

    • MD5

      a2f0599aa32b7f65ed68ee0dd585de30

    • SHA1

      ecc9828adc6a561a39b7a5021a410a97c3cf4e2f

    • SHA256

      46e1db5142ae4987ec6dd9c0c32490e0aba7fda0ff7b404c551b7b8395f061b4

    • SHA512

      4849a9f9327777ec7dbc828fd184f111922ea16c1d7089e13bda131784bf384826ed3e040e078d53ceb0d0770e89db034b216407b67d56f1972bbc1b487f90ab

    • SSDEEP

      6144:eQVH3/4YI7OFpm1MxUyRzoVOBlYQflIG:e2HP4B7VM6++OBlYER

    Score
    8/10
    aspackv2persistenceupx

    • ASPack v2.12-2.42

      Detects executables packed with ASPack v2.12-2.42

      aspackv2

    • Executes dropped EXE

    • Sets DLL path for service in the registry

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks