bb9e6b87b82194bba69287eb243b6871084886508a49728b8bfeb747cfb958d9 | Triage

Submit
Reports

Overview

overview

8

Static

static

bb9e6b87b8...d9.exe

windows7-x64

8

bb9e6b87b8...d9.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

Target

bb9e6b87b82194bba69287eb243b6871084886508a49728b8bfeb747cfb958d9
Size

160KB
Sample

221106-y21hjscfcn
MD5

08b8839211e6f6522ef0ca66f2eed630
SHA1

f2b81bdf8d3eecdb6e4943d7d376910a1b00e081
SHA256

bb9e6b87b82194bba69287eb243b6871084886508a49728b8bfeb747cfb958d9
SHA512

5fde7a5b9fe25740c139c7206c9255c0c5b0b4d571da55be2fe9834c8b939b441aaa399513981654ce5eb788149aa5f809e0aac93b497a58110cb2ce87d47406
SSDEEP

3072:eqPL1/7w6ZAs+VBKQpo6qvsPHJWjebSXhnGMoRJMbN4qw3:rQVm64uHsjeWxGMoRJMZ6

Score

8^/10

aspackv2 persistence upx

Static task

static1

Behavioral task

behavioral1

Sample

bb9e6b87b82194bba69287eb243b6871084886508a49728b8bfeb747cfb958d9.exe

Resource

win7-20220812-en

aspackv2 persistence upx

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

bb9e6b87b82194bba69287eb243b6871084886508a49728b8bfeb747cfb958d9.exe

Resource

win10v2004-20220901-en

aspackv2 persistence upx

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  bb9e6b87b82194bba69287eb243b6871084886508a49728b8bfeb747cfb958d9
- Size
  
  160KB
- MD5
  
  08b8839211e6f6522ef0ca66f2eed630
- SHA1
  
  f2b81bdf8d3eecdb6e4943d7d376910a1b00e081
- SHA256
  
  bb9e6b87b82194bba69287eb243b6871084886508a49728b8bfeb747cfb958d9
- SHA512
  
  5fde7a5b9fe25740c139c7206c9255c0c5b0b4d571da55be2fe9834c8b939b441aaa399513981654ce5eb788149aa5f809e0aac93b497a58110cb2ce87d47406
- SSDEEP
  
  3072:eqPL1/7w6ZAs+VBKQpo6qvsPHJWjebSXhnGMoRJMbN4qw3:rQVm64uHsjeWxGMoRJMZ6
Score

8^/10

aspackv2 persistence upx
- ASPack v2.12-2.42
  Detects executables packed with ASPack v2.12-2.42
  aspackv2
- Executes dropped EXE
- Sets DLL path for service in the registry
  persistence
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

aspackv2persistenceupx

behavioral2

aspackv2persistenceupx

© 2018-2025

Terms | Privacy