Overview

overview

7

Static

static

3

2023.exe

windows7-x64

7

2023.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2023.exe

  • Size

    3.9MB

  • Sample

    230620-jd8rpabh7w

  • MD5

    90f8859e4d97b25d28f6c1085fc80f53

  • SHA1

    64c1230a9038e8bd66c93e4e0b321336e25bd6cf

  • SHA256

    f592c546afc7a069ecb3a721c4c7892c7c70b39bec5148b1528d06c2fc001844

  • SHA512

    4770a269e6afa24d9b43e99a5bb28855ba87c93f5b593e585dd0d7348f43891004cadfce992cf1c87b4d2783e5295f96f4469fc6f7eddb00ab80d296e136b93d

  • SSDEEP

    98304:O06FOznLo0+Dd6uxcQ9hGPRa/9knyPnuSLlhJS9da+z:O3F6n80W6uGQzb9knyPuMlhJm9z

Score
7/10
aspackv2upx

Malware Config

Targets

    • Target

      2023.exe

    • Size

      3.9MB

    • MD5

      90f8859e4d97b25d28f6c1085fc80f53

    • SHA1

      64c1230a9038e8bd66c93e4e0b321336e25bd6cf

    • SHA256

      f592c546afc7a069ecb3a721c4c7892c7c70b39bec5148b1528d06c2fc001844

    • SHA512

      4770a269e6afa24d9b43e99a5bb28855ba87c93f5b593e585dd0d7348f43891004cadfce992cf1c87b4d2783e5295f96f4469fc6f7eddb00ab80d296e136b93d

    • SSDEEP

      98304:O06FOznLo0+Dd6uxcQ9hGPRa/9knyPnuSLlhJS9da+z:O3F6n80W6uGQzb9knyPuMlhJm9z

    Score
    7/10
    aspackv2upx

    • ASPack v2.12-2.42

      Detects executables packed with ASPack v2.12-2.42

      aspackv2

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks