Overview

overview

8

Static

static

8

fa5dcfc82c...56.exe

windows7-x64

8

fa5dcfc82c...56.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    fa5dcfc82cb2f098f429e1f710f81eadbc75bd22bb7942968e02b3267167ad56

  • Size

    289KB

  • Sample

    221123-z3mthshe3s

  • MD5

    7ca71c0b25f0a02cea3755c6f3faeeb5

  • SHA1

    23cbb919e0a291fabcf75dff1185c64c89e146e5

  • SHA256

    fa5dcfc82cb2f098f429e1f710f81eadbc75bd22bb7942968e02b3267167ad56

  • SHA512

    aae93841aa26f3589755d07e4c188c48170c456c182a388498424a0a19241821f2150d504a013b2f2f4d20483679f1f9f0a0052e757caa2f52f8211fb9330624

  • SSDEEP

    6144:pchQ+y3/4YIJ8m1MxUyRzoVOBlYQflIGe:pch3yP4BJTM6++OBlYERe

Score
8/10
aspackv2persistenceupx

Malware Config

Targets

    • Target

      fa5dcfc82cb2f098f429e1f710f81eadbc75bd22bb7942968e02b3267167ad56

    • Size

      289KB

    • MD5

      7ca71c0b25f0a02cea3755c6f3faeeb5

    • SHA1

      23cbb919e0a291fabcf75dff1185c64c89e146e5

    • SHA256

      fa5dcfc82cb2f098f429e1f710f81eadbc75bd22bb7942968e02b3267167ad56

    • SHA512

      aae93841aa26f3589755d07e4c188c48170c456c182a388498424a0a19241821f2150d504a013b2f2f4d20483679f1f9f0a0052e757caa2f52f8211fb9330624

    • SSDEEP

      6144:pchQ+y3/4YIJ8m1MxUyRzoVOBlYQflIGe:pch3yP4BJTM6++OBlYERe

    Score
    8/10
    aspackv2persistenceupx

    • ASPack v2.12-2.42

      Detects executables packed with ASPack v2.12-2.42

      aspackv2

    • Executes dropped EXE

    • Sets DLL path for service in the registry

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks