4e015a64da01d9fd8a19726e4753c2dc9f434c6c099e822ee17fc9cfee436ad0 | Triage

Submit
Reports

Overview

overview

7

Static

static

1

CrazyNCS.zip

windows10-2004-x64

7

Sharing

General

Target

CrazyNCS.zip
Size

135KB
Sample

230401-p7lf5sbe3v
MD5

dfdf762ae18c1b5f417cc39928d2a02c
SHA1

6ae367b9ee154fd5d6749d4b44426258bf0421db
SHA256

4e015a64da01d9fd8a19726e4753c2dc9f434c6c099e822ee17fc9cfee436ad0
SHA512

d59d2b9b6c1e17b4822a71528cc5eab5bec3b3017757134271fc5a8f99b4e97bdd7bb9ed7a1c4b8f0e63e38978b44a436c9e8678b2352f0bd65825db807c6e7c
SSDEEP

3072:ojTRgFloUWbwXwXIjhArpstmBCnLeKD5tVJpa2Ugt1yt0acg6NDuqJbj8HJaQU2Q:sTRgFloIDuqJn8HJaQU2SJxX520WLy64

Score

7^/10

aspackv2

Static task

static1

Behavioral task

behavioral1

Sample

CrazyNCS.zip

Resource

win10v2004-20230220-en

windows10-2004-x64

15 signatures

1800 seconds

Malware Config

Targets

- Target
  
  CrazyNCS.zip
- Size
  
  135KB
- MD5
  
  dfdf762ae18c1b5f417cc39928d2a02c
- SHA1
  
  6ae367b9ee154fd5d6749d4b44426258bf0421db
- SHA256
  
  4e015a64da01d9fd8a19726e4753c2dc9f434c6c099e822ee17fc9cfee436ad0
- SHA512
  
  d59d2b9b6c1e17b4822a71528cc5eab5bec3b3017757134271fc5a8f99b4e97bdd7bb9ed7a1c4b8f0e63e38978b44a436c9e8678b2352f0bd65825db807c6e7c
- SSDEEP
  
  3072:ojTRgFloUWbwXwXIjhArpstmBCnLeKD5tVJpa2Ugt1yt0acg6NDuqJbj8HJaQU2Q:sTRgFloIDuqJn8HJaQU2SJxX520WLy64
Score

7^/10

aspackv2
- ASPack v2.12-2.42
  Detects executables packed with ASPack v2.12-2.42
  aspackv2
- Executes dropped EXE
- Legitimate hosting services abused for malware hosting/C2
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Web Service

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

© 2018-2024

Terms | Privacy