824c01f5d399ea50d09b6ffa080c7e6e77ff3188492647c6ec58bffccbbaeda0 | Triage

Sharing

General

Target

824c01f5d399ea50d09b6ffa080c7e6e77ff3188492647c6ec58bffccbbaeda0
Size

22KB
Sample

221123-w7g72sha8w
MD5

5b4b84f1623f78a0f22fc71e18db5c50
SHA1

f5a9edc64e1c2b1e3e4c99652bc27c4c07075966
SHA256

824c01f5d399ea50d09b6ffa080c7e6e77ff3188492647c6ec58bffccbbaeda0
SHA512

b76bff31ac937d7ff0dd85fe402899ed14a01c45d9e3f97a7e53a1067cc41605078edadbf553a41533a394dbe9021b396bd9bd7204c98895e2c8952b8fd97c1a
SSDEEP

384:UqujdYZYZb0t2sr0TjZGeh6bH0wJGm+AxRr6+I9PfYUD7n+bFo/lh:UJYOZg52c0wJGmJx8LoI7nEO/H

Score

10^/10

aspackv2 evasion persistence trojan

Malware Config

Targets

- Target
  
  824c01f5d399ea50d09b6ffa080c7e6e77ff3188492647c6ec58bffccbbaeda0
- Size
  
  22KB
- MD5
  
  5b4b84f1623f78a0f22fc71e18db5c50
- SHA1
  
  f5a9edc64e1c2b1e3e4c99652bc27c4c07075966
- SHA256
  
  824c01f5d399ea50d09b6ffa080c7e6e77ff3188492647c6ec58bffccbbaeda0
- SHA512
  
  b76bff31ac937d7ff0dd85fe402899ed14a01c45d9e3f97a7e53a1067cc41605078edadbf553a41533a394dbe9021b396bd9bd7204c98895e2c8952b8fd97c1a
- SSDEEP
  
  384:UqujdYZYZb0t2sr0TjZGeh6bH0wJGm+AxRr6+I9PfYUD7n+bFo/lh:UJYOZg52c0wJGmJx8LoI7nEO/H
Score

10^/10

evasion persistence trojan
- UAC bypass
  evasion trojan
- Modifies Windows Firewall
  evasion
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Modify Existing Service

Registry Run Keys / Startup Folder

Privilege Escalation

Bypass User Account Control

Defense Evasion

Bypass User Account Control

Disabling Security Tools

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

evasionpersistencetrojan

behavioral2

evasionpersistencetrojan