6b291e8ac8db2c76e3942aaa471074345cb0bc9ebe92b8386d524990848917ce | Triage

Sharing

General

Target

6b291e8ac8db2c76e3942aaa471074345cb0bc9ebe92b8386d524990848917ce
Size

4.2MB
Sample

221129-s7s3rscg72
MD5

0300a92ec2d4db563a0298da9703af3b
SHA1

a33d8e8f96e6c906c2cd99263a7737c4bcd0b074
SHA256

6b291e8ac8db2c76e3942aaa471074345cb0bc9ebe92b8386d524990848917ce
SHA512

fb34a4ba0f5eeaf57d9d7e055f28804dc8eec4760f9ae819f5314c819a6181ef8f19fa6358ffb284b653b325ce436db6444144b2c065ae1f1947a6b1f5449d64
SSDEEP

1536:OKD0A2T3vLbsih9e8bTTpb/IgQmP9zKcTDB4w/UjlQ/dpKRq:352T3siXei5bcmP9JfUjW

Score

8^/10

aspackv2 persistence

Malware Config

Targets

- Target
  
  6b291e8ac8db2c76e3942aaa471074345cb0bc9ebe92b8386d524990848917ce
- Size
  
  4.2MB
- MD5
  
  0300a92ec2d4db563a0298da9703af3b
- SHA1
  
  a33d8e8f96e6c906c2cd99263a7737c4bcd0b074
- SHA256
  
  6b291e8ac8db2c76e3942aaa471074345cb0bc9ebe92b8386d524990848917ce
- SHA512
  
  fb34a4ba0f5eeaf57d9d7e055f28804dc8eec4760f9ae819f5314c819a6181ef8f19fa6358ffb284b653b325ce436db6444144b2c065ae1f1947a6b1f5449d64
- SSDEEP
  
  1536:OKD0A2T3vLbsih9e8bTTpb/IgQmP9zKcTDB4w/UjlQ/dpKRq:352T3siXei5bcmP9JfUjW
Score

6^/10

persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2