Overview

overview

8

Static

static

25785c538f...64.exe

windows7-x64

8

25785c538f...64.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    25785c538f75c7f30d6bc0c69f2e521c1bc2f6f3e8a7ca1ac50463972d94bd64

  • Size

    2.0MB

  • Sample

    221123-nj8fbscb3y

  • MD5

    e00a690d49c9e04126a1008947509746

  • SHA1

    4f92021a4abe6b0e37535d1a82f17c16e23881c7

  • SHA256

    25785c538f75c7f30d6bc0c69f2e521c1bc2f6f3e8a7ca1ac50463972d94bd64

  • SHA512

    6a3c8e8cea1386f55a49dbc50933f1a2c02cc11f3a0340f7ed6eda208f9e1f46d4c1512ac0baac0f2d86e7dc2f6856355dc1030eca37b9d8966581854df3241d

  • SSDEEP

    49152:V8ZTOpdNJQ/GAibqQyIVJfJ6b+9x8bVpnAI9lERm2H4bZoXghpwJXkQj:V82lQ/9imQJJob66bVpHlEVH4bZoXAiV

Score
8/10
aspackv2discovery

Malware Config

Targets

    • Target

      25785c538f75c7f30d6bc0c69f2e521c1bc2f6f3e8a7ca1ac50463972d94bd64

    • Size

      2.0MB

    • MD5

      e00a690d49c9e04126a1008947509746

    • SHA1

      4f92021a4abe6b0e37535d1a82f17c16e23881c7

    • SHA256

      25785c538f75c7f30d6bc0c69f2e521c1bc2f6f3e8a7ca1ac50463972d94bd64

    • SHA512

      6a3c8e8cea1386f55a49dbc50933f1a2c02cc11f3a0340f7ed6eda208f9e1f46d4c1512ac0baac0f2d86e7dc2f6856355dc1030eca37b9d8966581854df3241d

    • SSDEEP

      49152:V8ZTOpdNJQ/GAibqQyIVJfJ6b+9x8bVpnAI9lERm2H4bZoXghpwJXkQj:V82lQ/9imQJJob66bVpHlEVH4bZoXAiV

    Score
    8/10
    aspackv2discovery

    • ASPack v2.12-2.42

      Detects executables packed with ASPack v2.12-2.42

      aspackv2

    • Executes dropped EXE

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks