Overview

overview

8

Static

static

8

a867830b7d...13.exe

windows7-x64

8

a867830b7d...13.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a867830b7da22184d3807ab733a7ce564c4361d4e3dd71b2e8e4d4641cdc7413

  • Size

    289KB

  • Sample

    221123-z3r38she3x

  • MD5

    f20fdfa318f6faab614cf029600b4d97

  • SHA1

    bfebfeb048b3c3064535c87f7a897ef11e560941

  • SHA256

    a867830b7da22184d3807ab733a7ce564c4361d4e3dd71b2e8e4d4641cdc7413

  • SHA512

    810c2f839fa8d0ae23750675d94e3f44ab66520266088e58e3924cfcdc608dce6f4bf14d86c7d5f5806a2ee4efb52561dc1263215c010515b2a8a504adfa900b

  • SSDEEP

    6144:pchQ+73/4YIJ8m1MxUyRzoVOBlYQflIGr:pch37P4BJTM6++OBlYERr

Score
8/10
aspackv2persistenceupx

Malware Config

Targets

    • Target

      a867830b7da22184d3807ab733a7ce564c4361d4e3dd71b2e8e4d4641cdc7413

    • Size

      289KB

    • MD5

      f20fdfa318f6faab614cf029600b4d97

    • SHA1

      bfebfeb048b3c3064535c87f7a897ef11e560941

    • SHA256

      a867830b7da22184d3807ab733a7ce564c4361d4e3dd71b2e8e4d4641cdc7413

    • SHA512

      810c2f839fa8d0ae23750675d94e3f44ab66520266088e58e3924cfcdc608dce6f4bf14d86c7d5f5806a2ee4efb52561dc1263215c010515b2a8a504adfa900b

    • SSDEEP

      6144:pchQ+73/4YIJ8m1MxUyRzoVOBlYQflIGr:pch37P4BJTM6++OBlYERr

    Score
    8/10
    aspackv2persistenceupx

    • ASPack v2.12-2.42

      Detects executables packed with ASPack v2.12-2.42

      aspackv2

    • Executes dropped EXE

    • Sets DLL path for service in the registry

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks