Overview

overview

7

Static

static

1

3fe991c2d1...af.exe

windows7-x64

7

3fe991c2d1...af.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3fe991c2d146252b0f3bcb904fee4cfe47a4f2153229bd4ac0a99922196493af

  • Size

    22.4MB

  • Sample

    230223-qhy7dahg5y

  • MD5

    61fd84702d4f94cc3f109b1f9775d27b

  • SHA1

    6f4dab619a746f15d65f0092f0f8bf948fcc66dd

  • SHA256

    3fe991c2d146252b0f3bcb904fee4cfe47a4f2153229bd4ac0a99922196493af

  • SHA512

    2d67d9282fff90bd0d6824436a2a1cb73312dd22e6059bc5c6664968cfcd325bc11530a66c161f633f39a8ecc4d5a982e337c911798b9a87bd45461960d18fec

  • SSDEEP

    393216:BgfZYnBE6RjOlxT5oKYKzYR8GFo/kok1Bb2/6JbuCFF2/VZz8LlfhszMzhZlOwWJ:KZCG6NUxTjYwYR7o/PkXZJbi/HWlfhEp

Score
7/10
aspackv2

Malware Config

Targets

    • Target

      3fe991c2d146252b0f3bcb904fee4cfe47a4f2153229bd4ac0a99922196493af

    • Size

      22.4MB

    • MD5

      61fd84702d4f94cc3f109b1f9775d27b

    • SHA1

      6f4dab619a746f15d65f0092f0f8bf948fcc66dd

    • SHA256

      3fe991c2d146252b0f3bcb904fee4cfe47a4f2153229bd4ac0a99922196493af

    • SHA512

      2d67d9282fff90bd0d6824436a2a1cb73312dd22e6059bc5c6664968cfcd325bc11530a66c161f633f39a8ecc4d5a982e337c911798b9a87bd45461960d18fec

    • SSDEEP

      393216:BgfZYnBE6RjOlxT5oKYKzYR8GFo/kok1Bb2/6JbuCFF2/VZz8LlfhszMzhZlOwWJ:KZCG6NUxTjYwYR7o/PkXZJbi/HWlfhEp

    Score
    7/10
    aspackv2

    • ASPack v2.12-2.42

      Detects executables packed with ASPack v2.12-2.42

      aspackv2

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks