a66beef17c0078a79a8bc278120e04abee9ed06576e68bf285340c9a71cb813e | Triage

Submit
Reports

Overview

overview

8

Static

static

8

a66beef17c...3e.exe

windows7-x64

8

a66beef17c...3e.exe

windows10-2004-x64

8

Sharing

General

Target

a66beef17c0078a79a8bc278120e04abee9ed06576e68bf285340c9a71cb813e
Size

275KB
Sample

221123-zv6lnadh64
MD5

43ffeada436ffce3ea901868413f7620
SHA1

50054ebc6f88f3ab45771f3f3fb05d13e3019628
SHA256

a66beef17c0078a79a8bc278120e04abee9ed06576e68bf285340c9a71cb813e
SHA512

4bff350d3a683598d2282f7bb7e0832ba2f0db0441a9fcfc0a848f8871394e648314f6d89f2685646b791787d3fac524eb185ee7dd870c82e8f49cbacfc6d56f
SSDEEP

3072:86jI9XJy7r9C88KuCHBTTZJ/bxKOzCJhVnCMkoU97Qe5HZB5ksrHFZqTTeTTTfqy:fUZyo83nLbxKVJ3nCMkQe5HZAsHFZlxx

Score

8^/10

aspackv2 persistence

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

a66beef17c0078a79a8bc278120e04abee9ed06576e68bf285340c9a71cb813e.exe

Resource

win7-20220812-en

aspackv2 persistence

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

a66beef17c0078a79a8bc278120e04abee9ed06576e68bf285340c9a71cb813e.exe

Resource

win10v2004-20221111-en

aspackv2 persistence

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  a66beef17c0078a79a8bc278120e04abee9ed06576e68bf285340c9a71cb813e
- Size
  
  275KB
- MD5
  
  43ffeada436ffce3ea901868413f7620
- SHA1
  
  50054ebc6f88f3ab45771f3f3fb05d13e3019628
- SHA256
  
  a66beef17c0078a79a8bc278120e04abee9ed06576e68bf285340c9a71cb813e
- SHA512
  
  4bff350d3a683598d2282f7bb7e0832ba2f0db0441a9fcfc0a848f8871394e648314f6d89f2685646b791787d3fac524eb185ee7dd870c82e8f49cbacfc6d56f
- SSDEEP
  
  3072:86jI9XJy7r9C88KuCHBTTZJ/bxKOzCJhVnCMkoU97Qe5HZB5ksrHFZqTTeTTTfqy:fUZyo83nLbxKVJ3nCMkQe5HZAsHFZlxx
Score

8^/10

aspackv2 persistence
- ASPack v2.12-2.42
  Detects executables packed with ASPack v2.12-2.42
  aspackv2
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

aspackv2persistence

behavioral2

aspackv2persistence

© 2018-2024

Terms | Privacy