3e89dd52d1f0722bc2ceeeb7d551dab4d7b99b3a1f5b28f3de57d9609261c34e | Triage

Submit
Reports

Overview

overview

8

Static

static

1

对-账-单.exe

windows7-x64

8

对-账-单.exe

windows10-2004-x64

8

Sharing

General

Target

3e89dd52d1f0722bc2ceeeb7d551dab4d7b99b3a1f5b28f3de57d9609261c34e
Size

1.4MB
Sample

230616-awdvlaca83
MD5

96fce77c5c434623740b16f3a625cccf
SHA1

9be4addd3fecf1bc9c1e62b5b70b097ea00cba4e
SHA256

3e89dd52d1f0722bc2ceeeb7d551dab4d7b99b3a1f5b28f3de57d9609261c34e
SHA512

41f21784f2b9239917b178f8d5fbe6a7bce0ce082ad42d74fa3d2e57d934ba657731eb128615d8d5efc6b5dcf9b5e1922b0d1dc3b2ca2b75b37f7f552bce9be2
SSDEEP

24576:7c/zkbIOpOGvhbl0tJd2To5jCZg6zUCD42V+yVvdodGHP7OA7ZYiM8lQX67xE1cH:7criVdk5jCBUC0XuvdodeyAlYiTLducH

Score

8^/10

aspackv2

Static task

static1

Behavioral task

behavioral1

Sample

对-账-单.exe

Resource

win7-20230220-en

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

对-账-单.exe

Resource

win10v2004-20230221-en

windows10-2004-x64

11 signatures

150 seconds

Malware Config

Targets

- Target
  
  对-账-单.exe
- Size
  
  2.9MB
- MD5
  
  6c8b326564fa1443176397db8f55d24c
- SHA1
  
  6bd9d50fd50f07e77e8579023fcda7e50ed3cf4b
- SHA256
  
  6b59d8adcdc20b894e27975d2c351b652f8721254a34aeb3dafaf747f7c9d1ae
- SHA512
  
  88f57a3f59820cbea15b88ece7df2fa70b588ef1342d603d026a559a7111442413682d701c855bc9bd7a4922d1c4016181a6a7ad992e7e48d1a5a7edcc77ef87
- SSDEEP
  
  49152:LRwInKwV0jd+CBukNbWJZ6ZbaHcYz5aAVKiw6ZWqTG93jJ3hWpVc+:1weL0jICBPig3Yz5J/693kD
Score

8^/10

aspackv2
- Downloads MZ/PE file
- ASPack v2.12-2.42
  Detects executables packed with ASPack v2.12-2.42
  aspackv2
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Peripheral Device Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy