1a0d22cb06eb4cb2e046090620edd89caf655f19dd3ceb50ac0b7e5b7be4ddd1 | Triage

Sharing

General

Target

1a0d22cb06eb4cb2e046090620edd89caf655f19dd3ceb50ac0b7e5b7be4ddd1
Size

1.4MB
Sample

231012-vvt6eadg21
MD5

c37111f4c9f6d3c6d34fc462ae23f556
SHA1

492f0367621ec0e82f75d802c418f8f287be1306
SHA256

1a0d22cb06eb4cb2e046090620edd89caf655f19dd3ceb50ac0b7e5b7be4ddd1
SHA512

68aaec3a78ddb532f7dd22d537b64284e19874e6e2b2fbd66802db88a72e973c8f974e29f1e9ea7db378d37bec3ee22254aa709e83f97f0d4b4c3aed8706571f
SSDEEP

24576:8aBOENN5HpKuJM2WbO72JWNs4cJlztMqAFGGFFADxrz2hXCRTEtIzkM1EZSA4UZG:8gJJM2WC74We4ctMqAFJFaDlz2h+TEth

Score

8^/10

aspackv2 persistence

Malware Config

Targets

- Target
  
  1a0d22cb06eb4cb2e046090620edd89caf655f19dd3ceb50ac0b7e5b7be4ddd1
- Size
  
  1.4MB
- MD5
  
  c37111f4c9f6d3c6d34fc462ae23f556
- SHA1
  
  492f0367621ec0e82f75d802c418f8f287be1306
- SHA256
  
  1a0d22cb06eb4cb2e046090620edd89caf655f19dd3ceb50ac0b7e5b7be4ddd1
- SHA512
  
  68aaec3a78ddb532f7dd22d537b64284e19874e6e2b2fbd66802db88a72e973c8f974e29f1e9ea7db378d37bec3ee22254aa709e83f97f0d4b4c3aed8706571f
- SSDEEP
  
  24576:8aBOENN5HpKuJM2WbO72JWNs4cJlztMqAFGGFFADxrz2hXCRTEtIzkM1EZSA4UZG:8gJJM2WC74We4ctMqAFJFaDlz2h+TEth
Score

8^/10

aspackv2 persistence
- Adds policy Run key to start application
  persistence
- ASPack v2.12-2.42
  Detects executables packed with ASPack v2.12-2.42
  aspackv2
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

aspackv2persistence

behavioral2

aspackv2persistence