General

  • Target

    38aafc5967a4908a1761bd282299f65792869bd2cdd0ae403c505de137178408

  • Size

    160KB

  • Sample

    221030-cys4eahffn

  • MD5

    a31043b8a7037f53bb8d1f7f9d3f46f0

  • SHA1

    4c230ea5cbe01edfa70fb729ecf59c0c47c80ef3

  • SHA256

    38aafc5967a4908a1761bd282299f65792869bd2cdd0ae403c505de137178408

  • SHA512

    76574846621f3144f6a90855aebacf74a7060238d6d10fab18036981d6622ba5c7572c977ecfe3c91c71262c71fce74b6d90f54f6ed158bb0a7abab568d79bb6

  • SSDEEP

    3072:eqPL1/7w6ZAs+VBKRL7TURxZPQeQ6DHtsamoBz:rQVuTOZPQRIHrmoB

Malware Config

Targets

    • Target

      38aafc5967a4908a1761bd282299f65792869bd2cdd0ae403c505de137178408

    • Size

      160KB

    • MD5

      a31043b8a7037f53bb8d1f7f9d3f46f0

    • SHA1

      4c230ea5cbe01edfa70fb729ecf59c0c47c80ef3

    • SHA256

      38aafc5967a4908a1761bd282299f65792869bd2cdd0ae403c505de137178408

    • SHA512

      76574846621f3144f6a90855aebacf74a7060238d6d10fab18036981d6622ba5c7572c977ecfe3c91c71262c71fce74b6d90f54f6ed158bb0a7abab568d79bb6

    • SSDEEP

      3072:eqPL1/7w6ZAs+VBKRL7TURxZPQeQ6DHtsamoBz:rQVuTOZPQRIHrmoB

    • ASPack v2.12-2.42

      Detects executables packed with ASPack v2.12-2.42

    • Executes dropped EXE

    • Sets DLL path for service in the registry

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v6

Tasks