4a52b912d97586896b2b4a87d3144f29f89346b4f82d6d657df85b6122868f13 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4a52b912d97586896b2b4a87d3144f29f89346b4f82d6d657df85b6122868f13
Size

633KB
Sample

221107-byrd5sbee4
MD5

0f227598d7ea6f82a5e19fc8d72176b6
SHA1

45df74a77527dae013e60e164b57b797ba8f13b8
SHA256

4a52b912d97586896b2b4a87d3144f29f89346b4f82d6d657df85b6122868f13
SHA512

447dbc99f95e83e88861faa36fbd4096aaaa8e1e11cf5bce7b89caa4943abcf9d7f36de367a83af36a2abdaf5219c9b18df1d9541c0be1e79ba666f1b035610c
SSDEEP

1536:OKD0A2T3vLbsih9e8bTTpb/IgQmP9zKcTDB4w/UjlQ/dpKRqff:352T3siXei5bcmP9JfUjW

Score

8^/10

aspackv2 persistence

Malware Config

Targets

- Target
  
  4a52b912d97586896b2b4a87d3144f29f89346b4f82d6d657df85b6122868f13
- Size
  
  633KB
- MD5
  
  0f227598d7ea6f82a5e19fc8d72176b6
- SHA1
  
  45df74a77527dae013e60e164b57b797ba8f13b8
- SHA256
  
  4a52b912d97586896b2b4a87d3144f29f89346b4f82d6d657df85b6122868f13
- SHA512
  
  447dbc99f95e83e88861faa36fbd4096aaaa8e1e11cf5bce7b89caa4943abcf9d7f36de367a83af36a2abdaf5219c9b18df1d9541c0be1e79ba666f1b035610c
- SSDEEP
  
  1536:OKD0A2T3vLbsih9e8bTTpb/IgQmP9zKcTDB4w/UjlQ/dpKRqff:352T3siXei5bcmP9JfUjW
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2