0036e20366475d418f47ceb39d72c602cb9f8fb615be869fe28019898367f8a8 | Triage

Sharing

General

Target

0036e20366475d418f47ceb39d72c602cb9f8fb615be869fe28019898367f8a8
Size

117KB
Sample

221106-r1qhmahggm
MD5

0057d5a968dfefbf127ba40d44179880
SHA1

9d84b772345c9c826e14314b0b0dc171115c6c3c
SHA256

0036e20366475d418f47ceb39d72c602cb9f8fb615be869fe28019898367f8a8
SHA512

c531a3704fcad768e5521df633fbd7a1d45d2a1f49f48f3186e0f29cd78894813f778bb63e24e8626393e7f8fef35d84ca60bb7ca96ee5cd9497957b9a5e9d82
SSDEEP

3072:BNCv+pJxKDuFd7UVRCTTiEVgwuT1A9JEslou/T:BNCvMTFdhTPk1Kfx/T

Score

8^/10

aspackv2 persistence

Malware Config

Targets

- Target
  
  0036e20366475d418f47ceb39d72c602cb9f8fb615be869fe28019898367f8a8
- Size
  
  117KB
- MD5
  
  0057d5a968dfefbf127ba40d44179880
- SHA1
  
  9d84b772345c9c826e14314b0b0dc171115c6c3c
- SHA256
  
  0036e20366475d418f47ceb39d72c602cb9f8fb615be869fe28019898367f8a8
- SHA512
  
  c531a3704fcad768e5521df633fbd7a1d45d2a1f49f48f3186e0f29cd78894813f778bb63e24e8626393e7f8fef35d84ca60bb7ca96ee5cd9497957b9a5e9d82
- SSDEEP
  
  3072:BNCv+pJxKDuFd7UVRCTTiEVgwuT1A9JEslou/T:BNCvMTFdhTPk1Kfx/T
Score

8^/10

aspackv2 persistence
- ASPack v2.12-2.42
  Detects executables packed with ASPack v2.12-2.42
  aspackv2
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

aspackv2persistence

behavioral2