Overview

overview

9

Static

static

8

23dccfd073...a8.exe

windows7-x64

9

23dccfd073...a8.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    23dccfd07357161f71ed3ff1f15af11e4fa674d62a4a83001f95af600a7661a8

  • Size

    463KB

  • Sample

    221125-yg9wgsdh9v

  • MD5

    7418b76bbceb8bff0508e5ab40e397c4

  • SHA1

    8b19e4edd153579dc6b35e02d31460d466a803e9

  • SHA256

    23dccfd07357161f71ed3ff1f15af11e4fa674d62a4a83001f95af600a7661a8

  • SHA512

    45e15dc27bc92898bf93e94be81d421e6323b5eb54acb6a41d4475aaba80b83f533f5fc2789da0e36026f9b2f6e87348022eda8d4e687b9d5aa7fc3481ed66d0

  • SSDEEP

    12288:fQMSdD5Pc4MsRqOJIIEJm92ANrjczcy2MT/YmTANSqit14F3SLzJEK8:fQMSdDaw0gZEJs2QC/TwYBqi34FKm

Score
9/10
aspackv2upx

Malware Config

Targets

    • Target

      23dccfd07357161f71ed3ff1f15af11e4fa674d62a4a83001f95af600a7661a8

    • Size

      463KB

    • MD5

      7418b76bbceb8bff0508e5ab40e397c4

    • SHA1

      8b19e4edd153579dc6b35e02d31460d466a803e9

    • SHA256

      23dccfd07357161f71ed3ff1f15af11e4fa674d62a4a83001f95af600a7661a8

    • SHA512

      45e15dc27bc92898bf93e94be81d421e6323b5eb54acb6a41d4475aaba80b83f533f5fc2789da0e36026f9b2f6e87348022eda8d4e687b9d5aa7fc3481ed66d0

    • SSDEEP

      12288:fQMSdD5Pc4MsRqOJIIEJm92ANrjczcy2MT/YmTANSqit14F3SLzJEK8:fQMSdDaw0gZEJs2QC/TwYBqi34FKm

    Score
    9/10
    upx

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • AutoIT Executable

      AutoIT scripts compiled to PE executables.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks