General

  • Target

    c3be0654a5b65e30a8a5ab8c7a8727a6226e87486904f83ededc28e685cb62ef

  • Size

    150KB

  • Sample

    221205-ppgegadg8t

  • MD5

    fa5b31f9a4b6ed0f5d287e54f8da7f9e

  • SHA1

    f8a7c3f162ec3a709e6ff48dd2200822d72757f6

  • SHA256

    c3be0654a5b65e30a8a5ab8c7a8727a6226e87486904f83ededc28e685cb62ef

  • SHA512

    638f79a67a116f4d5c19bd578e801bf27df3169244db9d69c3fe91f3299c880c5792385e6f3c3a9dadfd712c4f2fc088fd0d1246489fb5898ada7c6c3aacfb96

  • SSDEEP

    3072:9qGLpya/2Yp9yhhJnrVbI/SDRXs+Ak1bjzzkdzZJeG6CugxTZ:U2tuJxa/SFnBvIZJePCuU

Malware Config

Targets

    • Target

      c3be0654a5b65e30a8a5ab8c7a8727a6226e87486904f83ededc28e685cb62ef

    • Size

      150KB

    • MD5

      fa5b31f9a4b6ed0f5d287e54f8da7f9e

    • SHA1

      f8a7c3f162ec3a709e6ff48dd2200822d72757f6

    • SHA256

      c3be0654a5b65e30a8a5ab8c7a8727a6226e87486904f83ededc28e685cb62ef

    • SHA512

      638f79a67a116f4d5c19bd578e801bf27df3169244db9d69c3fe91f3299c880c5792385e6f3c3a9dadfd712c4f2fc088fd0d1246489fb5898ada7c6c3aacfb96

    • SSDEEP

      3072:9qGLpya/2Yp9yhhJnrVbI/SDRXs+Ak1bjzzkdzZJeG6CugxTZ:U2tuJxa/SFnBvIZJePCuU

    • Modifies firewall policy service

    • ASPack v2.12-2.42

      Detects executables packed with ASPack v2.12-2.42

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v6

Tasks