Overview

overview

8

Static

static

8

9e28363751...39.exe

windows7-x64

8

9e28363751...39.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9e28363751cefd093ee433827a4800a82364f4ffe7228e45e2aa4bd6e7fb7039

  • Size

    292KB

  • Sample

    221123-z3sprshe3y

  • MD5

    8a47d07ba1d64b6e323520337697398f

  • SHA1

    c035aae63c5bf96fb03b06fc6a8f2387b4b09309

  • SHA256

    9e28363751cefd093ee433827a4800a82364f4ffe7228e45e2aa4bd6e7fb7039

  • SHA512

    1797031eae050200e5f8f9116ead3be3a093423980a01dccb08e6bb8ea303d60420bda6072bf4e220913b2fb4fa5e10d4943f385a94dbf90882d441b9c303438

  • SSDEEP

    6144:sN+HTr4epupJ3/4YIJ8m1MxUyRzoVOBlYQflIGM:sNgrZqP4BJTM6++OBlYERM

Score
8/10
aspackv2persistenceupx

Malware Config

Targets

    • Target

      9e28363751cefd093ee433827a4800a82364f4ffe7228e45e2aa4bd6e7fb7039

    • Size

      292KB

    • MD5

      8a47d07ba1d64b6e323520337697398f

    • SHA1

      c035aae63c5bf96fb03b06fc6a8f2387b4b09309

    • SHA256

      9e28363751cefd093ee433827a4800a82364f4ffe7228e45e2aa4bd6e7fb7039

    • SHA512

      1797031eae050200e5f8f9116ead3be3a093423980a01dccb08e6bb8ea303d60420bda6072bf4e220913b2fb4fa5e10d4943f385a94dbf90882d441b9c303438

    • SSDEEP

      6144:sN+HTr4epupJ3/4YIJ8m1MxUyRzoVOBlYQflIGM:sNgrZqP4BJTM6++OBlYERM

    Score
    8/10
    aspackv2persistenceupx

    • ASPack v2.12-2.42

      Detects executables packed with ASPack v2.12-2.42

      aspackv2

    • Executes dropped EXE

    • Sets DLL path for service in the registry

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks