Overview

overview

8

Static

static

8

abbd647aed...bf.exe

windows7-x64

8

abbd647aed...bf.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    abbd647aed9c0d37aee8bfadb537b58d07f2755a24055cd19eb1aafda46ebfbf

  • Size

    324KB

  • Sample

    221124-nw4b5sbe99

  • MD5

    e39759cd8fc3632605a1d89bbe0e752e

  • SHA1

    6ced5fb03b0fa20ecf98f44fa351e648a0f1977e

  • SHA256

    abbd647aed9c0d37aee8bfadb537b58d07f2755a24055cd19eb1aafda46ebfbf

  • SHA512

    b0f2c956bc8f706637a902daa1c02f549f2d43e24182c507f06fd6919e38d2e942727126d9518e3e48ea6c7e90115ea9064ba7f4be12e922ec4428121fc24651

  • SSDEEP

    6144:d/j5C+E13/4YIJ8m1MxUyRzoVOBlYQflIGE:d/s+qP4BJTM6++OBlYERE

Score
8/10
aspackv2persistenceupx

Malware Config

Targets

    • Target

      abbd647aed9c0d37aee8bfadb537b58d07f2755a24055cd19eb1aafda46ebfbf

    • Size

      324KB

    • MD5

      e39759cd8fc3632605a1d89bbe0e752e

    • SHA1

      6ced5fb03b0fa20ecf98f44fa351e648a0f1977e

    • SHA256

      abbd647aed9c0d37aee8bfadb537b58d07f2755a24055cd19eb1aafda46ebfbf

    • SHA512

      b0f2c956bc8f706637a902daa1c02f549f2d43e24182c507f06fd6919e38d2e942727126d9518e3e48ea6c7e90115ea9064ba7f4be12e922ec4428121fc24651

    • SSDEEP

      6144:d/j5C+E13/4YIJ8m1MxUyRzoVOBlYQflIGE:d/s+qP4BJTM6++OBlYERE

    Score
    8/10
    aspackv2persistenceupx

    • ASPack v2.12-2.42

      Detects executables packed with ASPack v2.12-2.42

      aspackv2

    • Executes dropped EXE

    • Sets DLL path for service in the registry

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks