9d40df1a75fe474a3f9d5fdc4685f9f614616dfbe52323c8941b8fb53b9d7c79 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

8

9d40df1a75...79.exe

windows7-x64

8

9d40df1a75...79.exe

windows10-2004-x64

8

Sharing

General

Target

9d40df1a75fe474a3f9d5fdc4685f9f614616dfbe52323c8941b8fb53b9d7c79
Size

452KB
Sample

221206-a6ybzsfd2v
MD5

8de5f463a3b9d225d18de39170a393bb
SHA1

d579b2b74fa5349b8b470d9fdb5f2e7d0a59acc5
SHA256

9d40df1a75fe474a3f9d5fdc4685f9f614616dfbe52323c8941b8fb53b9d7c79
SHA512

58ea3d12578fe2b436fe8f0cd8f3a182df96472087598dc6a3b76e087993e21423089530fcd0e7f4f993fd8efdbcfaa5784d1043d4fc2e440c6be39c3a30ae5f
SSDEEP

12288:pIyFl7J8QgMF+T7EMGpt5iHbGNkC7hvKX12nh:NCTTNCt26m12nh

Score

8^/10

aspackv2 persistence

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

9d40df1a75fe474a3f9d5fdc4685f9f614616dfbe52323c8941b8fb53b9d7c79.exe

Resource

win7-20221111-en

aspackv2 persistence

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

9d40df1a75fe474a3f9d5fdc4685f9f614616dfbe52323c8941b8fb53b9d7c79.exe

Resource

win10v2004-20220812-en

aspackv2 persistence

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  9d40df1a75fe474a3f9d5fdc4685f9f614616dfbe52323c8941b8fb53b9d7c79
- Size
  
  452KB
- MD5
  
  8de5f463a3b9d225d18de39170a393bb
- SHA1
  
  d579b2b74fa5349b8b470d9fdb5f2e7d0a59acc5
- SHA256
  
  9d40df1a75fe474a3f9d5fdc4685f9f614616dfbe52323c8941b8fb53b9d7c79
- SHA512
  
  58ea3d12578fe2b436fe8f0cd8f3a182df96472087598dc6a3b76e087993e21423089530fcd0e7f4f993fd8efdbcfaa5784d1043d4fc2e440c6be39c3a30ae5f
- SSDEEP
  
  12288:pIyFl7J8QgMF+T7EMGpt5iHbGNkC7hvKX12nh:NCTTNCt26m12nh
Score

8^/10

aspackv2 persistence
- ASPack v2.12-2.42
  Detects executables packed with ASPack v2.12-2.42
  aspackv2
- Executes dropped EXE
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Registry Run Keys / Startup Folder

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

aspackv2persistence

behavioral2

aspackv2persistence

© 2018-2025

Terms | Privacy