143e56f0eb490729db24fc99e8fbafac53acef8517e17b063b211416910fc9ef | Triage

Sharing

Copy URL Twitter E-mail

General

Target

C.dll
Size

4.2MB
Sample

230816-e97r2sfd43
MD5

ef2a78c97ba90e8429c3d1d37c179d33
SHA1

8ded75e609b1817f59b1c4f0c8a4397da49574c1
SHA256

143e56f0eb490729db24fc99e8fbafac53acef8517e17b063b211416910fc9ef
SHA512

1111d4b602871b264d0995673b1f27553d90f0bfb40d48d33bd21143e117a028fbb472b0120a7e05c5a6a5109b7a8b5634fddde90623aee7781db6244fd6f288
SSDEEP

98304:4HNh7Gv1vZCx2mkZxKRJz1UMMKLZNzhO5Cs:4HNsv1xmkZcRJxNLZNzC

Score

8^/10

aspackv2 persistence

Malware Config

Targets

- Target
  
  C.dll
- Size
  
  4.2MB
- MD5
  
  ef2a78c97ba90e8429c3d1d37c179d33
- SHA1
  
  8ded75e609b1817f59b1c4f0c8a4397da49574c1
- SHA256
  
  143e56f0eb490729db24fc99e8fbafac53acef8517e17b063b211416910fc9ef
- SHA512
  
  1111d4b602871b264d0995673b1f27553d90f0bfb40d48d33bd21143e117a028fbb472b0120a7e05c5a6a5109b7a8b5634fddde90623aee7781db6244fd6f288
- SSDEEP
  
  98304:4HNh7Gv1vZCx2mkZxKRJz1UMMKLZNzhO5Cs:4HNsv1xmkZcRJxNLZNzC
Score

8^/10

persistence
- Blocklisted process makes network request
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2