Overview

overview

9

Static

static

8

acf3f37dcf...9d.exe

windows7-x64

9

acf3f37dcf...9d.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    acf3f37dcfaaf0005979f55c20e079adf3657190e0855a649b6b4ceb46457e9d

  • Size

    909KB

  • Sample

    221107-gxfh5sebbq

  • MD5

    088ebcfa72b7c06dd0cfdc1250b39000

  • SHA1

    99e3cacb51cc608124c30793e5655b2776b3d6af

  • SHA256

    acf3f37dcfaaf0005979f55c20e079adf3657190e0855a649b6b4ceb46457e9d

  • SHA512

    b7ff8dedeec3f95ab24434f7cca0d06d17c60e1928bc7f8012bdd02ac2cc8b9730586da1b1ad687417481af0a344c8b9c67f7ecb7d196ef4160def820640ca7c

  • SSDEEP

    24576:HePTJVWEhwByzSzlykFYtUJUpe08NVvmXILzPOsEd+3wW:4JN1zyl7FYtXS1WInj2+3wW

Score
9/10
aspackv2persistencespywarestealer

Malware Config

Targets

    • Target

      acf3f37dcfaaf0005979f55c20e079adf3657190e0855a649b6b4ceb46457e9d

    • Size

      909KB

    • MD5

      088ebcfa72b7c06dd0cfdc1250b39000

    • SHA1

      99e3cacb51cc608124c30793e5655b2776b3d6af

    • SHA256

      acf3f37dcfaaf0005979f55c20e079adf3657190e0855a649b6b4ceb46457e9d

    • SHA512

      b7ff8dedeec3f95ab24434f7cca0d06d17c60e1928bc7f8012bdd02ac2cc8b9730586da1b1ad687417481af0a344c8b9c67f7ecb7d196ef4160def820640ca7c

    • SSDEEP

      24576:HePTJVWEhwByzSzlykFYtUJUpe08NVvmXILzPOsEd+3wW:4JN1zyl7FYtXS1WInj2+3wW

    Score
    9/10
    aspackv2persistencespywarestealer

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • ASPack v2.12-2.42

      Detects executables packed with ASPack v2.12-2.42

      aspackv2

    • Sets service image path in registry

      persistence

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks