89f90529ccbdb45d89149dec5f889676b390ff92c5797347f4df38c1fcf79a9e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

89f90529ccbdb45d89149dec5f889676b390ff92c5797347f4df38c1fcf79a9e
Size

128KB
Sample

221129-gm6btabg24
MD5

8dd13c211f10d02fe4ae569f83f1f53e
SHA1

02502084bf6eecda8a5d6c111049f8ce6d30f15b
SHA256

89f90529ccbdb45d89149dec5f889676b390ff92c5797347f4df38c1fcf79a9e
SHA512

95f6ad709bd7a963b5527b40925c1aa92c7f0e738b9a9a4f9fed64c89121dd4efbf07c615494314ab1227a25de34daf86fd61ea8c489f407da13b1c366b00763
SSDEEP

3072:t9MFwWCekB/iJX/Xo6mNdVLUvUgk4xmxA83DI6:XrpuXSdVQsgk4gxA8l

Score

8^/10

aspackv2 persistence

Malware Config

Targets

- Target
  
  89f90529ccbdb45d89149dec5f889676b390ff92c5797347f4df38c1fcf79a9e
- Size
  
  128KB
- MD5
  
  8dd13c211f10d02fe4ae569f83f1f53e
- SHA1
  
  02502084bf6eecda8a5d6c111049f8ce6d30f15b
- SHA256
  
  89f90529ccbdb45d89149dec5f889676b390ff92c5797347f4df38c1fcf79a9e
- SHA512
  
  95f6ad709bd7a963b5527b40925c1aa92c7f0e738b9a9a4f9fed64c89121dd4efbf07c615494314ab1227a25de34daf86fd61ea8c489f407da13b1c366b00763
- SSDEEP
  
  3072:t9MFwWCekB/iJX/Xo6mNdVLUvUgk4xmxA83DI6:XrpuXSdVQsgk4gxA8l
Score

8^/10

aspackv2 persistence
- ASPack v2.12-2.42
  Detects executables packed with ASPack v2.12-2.42
  aspackv2
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

aspackv2persistence