e2fcea0512810762afad37d8a216680570cca72f904b94c41d82374d47af1da8 | Triage

Sharing

General

Target

1d93fc167d272884873a8844ba338700_JC.exe
Size

667KB
Sample

231013-b781jshh6t
MD5

1d93fc167d272884873a8844ba338700
SHA1

ef5c92379868a0cd9beebefc07c496738501cff8
SHA256

e2fcea0512810762afad37d8a216680570cca72f904b94c41d82374d47af1da8
SHA512

138491adae3f1d38b7e1c5389d03c4de236df6f9ced086d0eb1d91f843dc807705cf8522078633d75356627f44054e03277542784fb864eecb331a8f2eef79f1
SSDEEP

1536:OKD0A2T3vLbsih9e8bTTpb/IgQmP9zKcTDB4w/UjlQ/dpKRq:352T3siXei5bcmP9JfUjW

Score

7^/10

aspackv2 persistence

Malware Config

Targets

- Target
  
  1d93fc167d272884873a8844ba338700_JC.exe
- Size
  
  667KB
- MD5
  
  1d93fc167d272884873a8844ba338700
- SHA1
  
  ef5c92379868a0cd9beebefc07c496738501cff8
- SHA256
  
  e2fcea0512810762afad37d8a216680570cca72f904b94c41d82374d47af1da8
- SHA512
  
  138491adae3f1d38b7e1c5389d03c4de236df6f9ced086d0eb1d91f843dc807705cf8522078633d75356627f44054e03277542784fb864eecb331a8f2eef79f1
- SSDEEP
  
  1536:OKD0A2T3vLbsih9e8bTTpb/IgQmP9zKcTDB4w/UjlQ/dpKRq:352T3siXei5bcmP9JfUjW
Score

7^/10

aspackv2 persistence
- ASPack v2.12-2.42
  Detects executables packed with ASPack v2.12-2.42
  aspackv2
- Deletes itself
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

aspackv2persistence

behavioral2

aspackv2persistence