54e2a0a7f4350265a4ec45cd012925cb68a11bf94d30fcd944153b28f2f91dbf | Triage

Sharing

General

Target

3e0496f93891698d71ee644055f9c950exe_JC.exe
Size

704KB
Sample

231013-b3m8aabd68
MD5

3e0496f93891698d71ee644055f9c950
SHA1

b955afeaedd5fe4d9db11ac866a75b198b4080e0
SHA256

54e2a0a7f4350265a4ec45cd012925cb68a11bf94d30fcd944153b28f2f91dbf
SHA512

d929c39f7088a57ec0adc0f46ca9da0109d95471f778efbd80f39bd71f8e49663d126599ba6d02e6dd5558e4b271407a4b593c2ccf885d1995516f83a9453143
SSDEEP

1536:OKD0A2T3vLbsih9e8bTTpb/IgQmP9zKcTDB4w/UjlQ/dpKRq:352T3siXei5bcmP9JfUjW

Score

7^/10

aspackv2 persistence

Malware Config

Targets

- Target
  
  3e0496f93891698d71ee644055f9c950exe_JC.exe
- Size
  
  704KB
- MD5
  
  3e0496f93891698d71ee644055f9c950
- SHA1
  
  b955afeaedd5fe4d9db11ac866a75b198b4080e0
- SHA256
  
  54e2a0a7f4350265a4ec45cd012925cb68a11bf94d30fcd944153b28f2f91dbf
- SHA512
  
  d929c39f7088a57ec0adc0f46ca9da0109d95471f778efbd80f39bd71f8e49663d126599ba6d02e6dd5558e4b271407a4b593c2ccf885d1995516f83a9453143
- SSDEEP
  
  1536:OKD0A2T3vLbsih9e8bTTpb/IgQmP9zKcTDB4w/UjlQ/dpKRq:352T3siXei5bcmP9JfUjW
Score

7^/10

aspackv2 persistence
- ASPack v2.12-2.42
  Detects executables packed with ASPack v2.12-2.42
  aspackv2
- Deletes itself
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

aspackv2persistence

behavioral2

aspackv2persistence