Overview

overview

8

Static

static

8

84255ac39f...7f.exe

windows7-x64

8

84255ac39f...7f.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    84255ac39f55df5b211ae0efa6f467b6f26fd34d3f94be2169c3048e645c6c7f

  • Size

    287KB

  • Sample

    221128-cswx4sce5w

  • MD5

    49535123fd56c920e669191a90358a8b

  • SHA1

    08e8c01353dfc6000eb49b2357e7cd21d7a42481

  • SHA256

    84255ac39f55df5b211ae0efa6f467b6f26fd34d3f94be2169c3048e645c6c7f

  • SHA512

    d226a0e6056860973dc1111ac96eeca7f8444670ab46f130e38ae2c5c1cd3ab9d0b87bac7f3ac48ad62969518e92b8a4eb917a0cf3f29556d7f7097bf0c11049

  • SSDEEP

    6144:KchQ+D33/4YIJ8m1MxUyRzoVOBlYQflIGC:Kch3D3P4BJTM6++OBlYERC

Score
8/10
aspackv2persistenceupx

Malware Config

Targets

    • Target

      84255ac39f55df5b211ae0efa6f467b6f26fd34d3f94be2169c3048e645c6c7f

    • Size

      287KB

    • MD5

      49535123fd56c920e669191a90358a8b

    • SHA1

      08e8c01353dfc6000eb49b2357e7cd21d7a42481

    • SHA256

      84255ac39f55df5b211ae0efa6f467b6f26fd34d3f94be2169c3048e645c6c7f

    • SHA512

      d226a0e6056860973dc1111ac96eeca7f8444670ab46f130e38ae2c5c1cd3ab9d0b87bac7f3ac48ad62969518e92b8a4eb917a0cf3f29556d7f7097bf0c11049

    • SSDEEP

      6144:KchQ+D33/4YIJ8m1MxUyRzoVOBlYQflIGC:Kch3D3P4BJTM6++OBlYERC

    Score
    8/10
    aspackv2persistenceupx

    • ASPack v2.12-2.42

      Detects executables packed with ASPack v2.12-2.42

      aspackv2

    • Executes dropped EXE

    • Sets DLL path for service in the registry

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

1
T1060

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks