01f388c369337b3e30fd0ab226612f37dc1c0beeba2ddb443c15aab6ea4cbc2e | Triage

Submit
Reports

Overview

overview

8

Static

static

8

01f388c369...2e.exe

windows7-x64

8

01f388c369...2e.exe

windows10-2004-x64

8

Sharing

General

Target

01f388c369337b3e30fd0ab226612f37dc1c0beeba2ddb443c15aab6ea4cbc2e
Size

324KB
Sample

221123-z38e8aed82
MD5

18573585e9de0e250b2bce76d5e12c34
SHA1

3b7b32390b092d7aeb9c68991ef31e453261cf59
SHA256

01f388c369337b3e30fd0ab226612f37dc1c0beeba2ddb443c15aab6ea4cbc2e
SHA512

a77e4cb2458f33c2046c615f975a3d6dc45783254088199a7a5e688deeade454b3268b51e4b8acdd79cb26983a2a463fa132df5959d46b06596b147500123fb6
SSDEEP

6144:d/j5C+E23/4YIJ8m1MxUyRzoVOBlYQflIGE:d/s+hP4BJTM6++OBlYERE

Score

8^/10

aspackv2 persistence upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

01f388c369337b3e30fd0ab226612f37dc1c0beeba2ddb443c15aab6ea4cbc2e.exe

Resource

win7-20221111-en

aspackv2 persistence upx

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

01f388c369337b3e30fd0ab226612f37dc1c0beeba2ddb443c15aab6ea4cbc2e.exe

Resource

win10v2004-20220901-en

aspackv2 persistence upx

windows10-2004-x64

12 signatures

150 seconds

Malware Config

Targets

- Target
  
  01f388c369337b3e30fd0ab226612f37dc1c0beeba2ddb443c15aab6ea4cbc2e
- Size
  
  324KB
- MD5
  
  18573585e9de0e250b2bce76d5e12c34
- SHA1
  
  3b7b32390b092d7aeb9c68991ef31e453261cf59
- SHA256
  
  01f388c369337b3e30fd0ab226612f37dc1c0beeba2ddb443c15aab6ea4cbc2e
- SHA512
  
  a77e4cb2458f33c2046c615f975a3d6dc45783254088199a7a5e688deeade454b3268b51e4b8acdd79cb26983a2a463fa132df5959d46b06596b147500123fb6
- SSDEEP
  
  6144:d/j5C+E23/4YIJ8m1MxUyRzoVOBlYQflIGE:d/s+hP4BJTM6++OBlYERE
Score

8^/10

aspackv2 persistence upx
- ASPack v2.12-2.42
  Detects executables packed with ASPack v2.12-2.42
  aspackv2
- Executes dropped EXE
- Sets DLL path for service in the registry
  persistence
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

aspackv2persistenceupx

behavioral2

aspackv2persistenceupx

© 2018-2024

Terms | Privacy