ac54f880c52452a9defe3bf76fbe6e0f8c4e19d4118df667a9b1a4fd6873cc2f | Triage

Submit
Reports

Overview

overview

8

Static

static

ac54f880c5...2f.exe

windows7-x64

8

ac54f880c5...2f.exe

windows10-2004-x64

8

Sharing

General

Target

ac54f880c52452a9defe3bf76fbe6e0f8c4e19d4118df667a9b1a4fd6873cc2f
Size

258KB
Sample

221129-jdll6acc4s
MD5

9fe0a7b2b91bb533e97522c2ed49de25
SHA1

c8b50d4a5898ba52b673d3307a12b3ca0380ec80
SHA256

ac54f880c52452a9defe3bf76fbe6e0f8c4e19d4118df667a9b1a4fd6873cc2f
SHA512

fe798afad422c76b180cbf7434ba16d24d848b76353ad2d36d48660d8f8d6382eb48d59028c62f928460e1ed63e755a7970c31509fead4efc23addb07b041322
SSDEEP

6144:vYNKyTM5nSOEt5zpaiRhcuGE07v6+uMHWzIH:GTQ3wNxRhTKj6oHZ

Score

8^/10

aspackv2 persistence upx

Static task

static1

Behavioral task

behavioral1

Sample

ac54f880c52452a9defe3bf76fbe6e0f8c4e19d4118df667a9b1a4fd6873cc2f.exe

Resource

win7-20220812-en

aspackv2 persistence upx

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

ac54f880c52452a9defe3bf76fbe6e0f8c4e19d4118df667a9b1a4fd6873cc2f.exe

Resource

win10v2004-20220812-en

aspackv2 persistence upx

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  ac54f880c52452a9defe3bf76fbe6e0f8c4e19d4118df667a9b1a4fd6873cc2f
- Size
  
  258KB
- MD5
  
  9fe0a7b2b91bb533e97522c2ed49de25
- SHA1
  
  c8b50d4a5898ba52b673d3307a12b3ca0380ec80
- SHA256
  
  ac54f880c52452a9defe3bf76fbe6e0f8c4e19d4118df667a9b1a4fd6873cc2f
- SHA512
  
  fe798afad422c76b180cbf7434ba16d24d848b76353ad2d36d48660d8f8d6382eb48d59028c62f928460e1ed63e755a7970c31509fead4efc23addb07b041322
- SSDEEP
  
  6144:vYNKyTM5nSOEt5zpaiRhcuGE07v6+uMHWzIH:GTQ3wNxRhTKj6oHZ
Score

8^/10

aspackv2 persistence upx
- ASPack v2.12-2.42
  Detects executables packed with ASPack v2.12-2.42
  aspackv2
- Executes dropped EXE
- Sets DLL path for service in the registry
  persistence
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

aspackv2persistenceupx

behavioral2

aspackv2persistenceupx

© 2018-2024

Terms | Privacy