996c865ce713d5a713b68e6d2b39f0602c6dddb35416ca031d4db843442fe3df | Triage

Sharing

Copy URL Twitter E-mail

General

Target

996c865ce713d5a713b68e6d2b39f0602c6dddb35416ca031d4db843442fe3df
Size

504KB
Sample

221206-1pkyfaae2y
MD5

0d7e9658ac10094c0c164055ba1f1928
SHA1

7f2af38fb8984c598b17c790d5e8d577b2194a2a
SHA256

996c865ce713d5a713b68e6d2b39f0602c6dddb35416ca031d4db843442fe3df
SHA512

4ea3dbd633ce6ee7fe6768409ab303df24a84d531a5eab9eabeddae9e70283103f1201ef031865fdc346e0079c87386ddb29c0d0726385a726e915b59a774543
SSDEEP

3072:DzJXMaNDyWjO9AMNMYHvT3A1jYxB1mgkNwmcsuWuHj:DKUFNMNMsjSamgkbMWWj

Score

8^/10

aspackv2 persistence

Malware Config

Targets

- Target
  
  996c865ce713d5a713b68e6d2b39f0602c6dddb35416ca031d4db843442fe3df
- Size
  
  504KB
- MD5
  
  0d7e9658ac10094c0c164055ba1f1928
- SHA1
  
  7f2af38fb8984c598b17c790d5e8d577b2194a2a
- SHA256
  
  996c865ce713d5a713b68e6d2b39f0602c6dddb35416ca031d4db843442fe3df
- SHA512
  
  4ea3dbd633ce6ee7fe6768409ab303df24a84d531a5eab9eabeddae9e70283103f1201ef031865fdc346e0079c87386ddb29c0d0726385a726e915b59a774543
- SSDEEP
  
  3072:DzJXMaNDyWjO9AMNMYHvT3A1jYxB1mgkNwmcsuWuHj:DKUFNMNMsjSamgkbMWWj
Score

8^/10

aspackv2 persistence
- ASPack v2.12-2.42
  Detects executables packed with ASPack v2.12-2.42
  aspackv2
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

aspackv2persistence

behavioral2