fd4ed6dde2c2439e8f32441bf9d00877efa9147d449ae50e2e391a4d04f3283c | Triage

Sharing

General

Target

fd4ed6dde2c2439e8f32441bf9d00877efa9147d449ae50e2e391a4d04f3283c
Size

1.8MB
Sample

230625-w5qfmsed37
MD5

8d535ad4b5e90f01fce0faed11659e96
SHA1

b6516dd03259d31aacf7398c21993aff47733ed5
SHA256

fd4ed6dde2c2439e8f32441bf9d00877efa9147d449ae50e2e391a4d04f3283c
SHA512

48013c9fe16139e079e1f84c52fc2c5d3a5e512a10ebf4cca5708cf6f797584909cc7d5ce049e6a54228e24e1d9dbcdb72a327b7a7297a43ba9a29fc949ba4d0
SSDEEP

49152:WtX0zooTO8k0MmKoQMmiUXyTeOctXj8xe8gQU:WtdAeoQji3Kj8c

Score

8^/10

aspackv2 evasion

Malware Config

Targets

- Target
  
  fd4ed6dde2c2439e8f32441bf9d00877efa9147d449ae50e2e391a4d04f3283c
- Size
  
  1.8MB
- MD5
  
  8d535ad4b5e90f01fce0faed11659e96
- SHA1
  
  b6516dd03259d31aacf7398c21993aff47733ed5
- SHA256
  
  fd4ed6dde2c2439e8f32441bf9d00877efa9147d449ae50e2e391a4d04f3283c
- SHA512
  
  48013c9fe16139e079e1f84c52fc2c5d3a5e512a10ebf4cca5708cf6f797584909cc7d5ce049e6a54228e24e1d9dbcdb72a327b7a7297a43ba9a29fc949ba4d0
- SSDEEP
  
  49152:WtX0zooTO8k0MmKoQMmiUXyTeOctXj8xe8gQU:WtdAeoQji3Kj8c
Score

8^/10

evasion
- Modifies Windows Firewall
  evasion
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Modify Existing Service

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2