Overview

overview

8

Static

static

8

4bd3a2e161...74.exe

windows7-x64

8

4bd3a2e161...74.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    4bd3a2e161e6e2c4273e33629751105cd5e26fbb407cdb2e5420c1f4e817c874

  • Size

    58KB

  • Sample

    221121-l4xs8ahg2z

  • MD5

    3b316784bb21bc7421f0af78485725f0

  • SHA1

    ab2ae568c165cc0ce31a77f60b6d9db47b64bdc4

  • SHA256

    4bd3a2e161e6e2c4273e33629751105cd5e26fbb407cdb2e5420c1f4e817c874

  • SHA512

    f7d54ddc3e143b295ec0fab718820ac56395f664213e502ab09a3ff8e377a72513951d0aaa074489a60e281400fe12cbea95ca240a1811c68cf8b8dafeffeb34

  • SSDEEP

    768:8lT5LRwivTwNjZbA1bvRvEaZyzDPtP6vBd+V6znlp0LIej08QGPL4vzZq2o9W7G6:yvspev1pCP6v/uXj0fGCq2iW7z

Score
8/10
aspackv2upx

Malware Config

Targets

    • Target

      4bd3a2e161e6e2c4273e33629751105cd5e26fbb407cdb2e5420c1f4e817c874

    • Size

      58KB

    • MD5

      3b316784bb21bc7421f0af78485725f0

    • SHA1

      ab2ae568c165cc0ce31a77f60b6d9db47b64bdc4

    • SHA256

      4bd3a2e161e6e2c4273e33629751105cd5e26fbb407cdb2e5420c1f4e817c874

    • SHA512

      f7d54ddc3e143b295ec0fab718820ac56395f664213e502ab09a3ff8e377a72513951d0aaa074489a60e281400fe12cbea95ca240a1811c68cf8b8dafeffeb34

    • SSDEEP

      768:8lT5LRwivTwNjZbA1bvRvEaZyzDPtP6vBd+V6znlp0LIej08QGPL4vzZq2o9W7G6:yvspev1pCP6v/uXj0fGCq2iW7z

    Score
    8/10
    aspackv2upx

    • ASPack v2.12-2.42

      Detects executables packed with ASPack v2.12-2.42

      aspackv2

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks