5184756f39f533eecbcb7fcd535ba84bef9ec985bd29c4784eb98b4bfbfc6431 | Triage

Submit
Reports

Overview

overview

8

Static

static

7

5184756f39...31.exe

windows7-x64

8

5184756f39...31.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

Target

5184756f39f533eecbcb7fcd535ba84bef9ec985bd29c4784eb98b4bfbfc6431
Size

15.8MB
Sample

231012-dj5pbsbh4z
MD5

13341f53447846cd21adae8e2add5b90
SHA1

cd2e2b35af5cac85958b1e039bec5a388ad6f705
SHA256

5184756f39f533eecbcb7fcd535ba84bef9ec985bd29c4784eb98b4bfbfc6431
SHA512

43ea14f669b81aa6eb9979c37b870914b3efef8af58d5facf793efcdb24406959ca6cd39fae7a23e8e0d41b85824d715962eb1411908260efb4bc1504e5026ff
SSDEEP

393216:HkVm7EFmyEfXGnCFF64RyWnDrXYO6f87UMY89EWC1MYwmknFqrRl/nKcOAw:Sm7EUyPqF64vRY87dj9ED1M7zn+iGw

Score

8^/10

aspackv2

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

5184756f39f533eecbcb7fcd535ba84bef9ec985bd29c4784eb98b4bfbfc6431.exe

Resource

win7-20230831-en

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

5184756f39f533eecbcb7fcd535ba84bef9ec985bd29c4784eb98b4bfbfc6431.exe

Resource

win10v2004-20230915-en

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  5184756f39f533eecbcb7fcd535ba84bef9ec985bd29c4784eb98b4bfbfc6431
- Size
  
  15.8MB
- MD5
  
  13341f53447846cd21adae8e2add5b90
- SHA1
  
  cd2e2b35af5cac85958b1e039bec5a388ad6f705
- SHA256
  
  5184756f39f533eecbcb7fcd535ba84bef9ec985bd29c4784eb98b4bfbfc6431
- SHA512
  
  43ea14f669b81aa6eb9979c37b870914b3efef8af58d5facf793efcdb24406959ca6cd39fae7a23e8e0d41b85824d715962eb1411908260efb4bc1504e5026ff
- SSDEEP
  
  393216:HkVm7EFmyEfXGnCFF64RyWnDrXYO6f87UMY89EWC1MYwmknFqrRl/nKcOAw:Sm7EUyPqF64vRY87dj9ED1M7zn+iGw
Score

8^/10

aspackv2
- Drops file in Drivers directory
- ASPack v2.12-2.42
  Detects executables packed with ASPack v2.12-2.42
  aspackv2
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
- Enumerates connected drives
  Attempts to read the root path of hard drives other than the default C: drive.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy