cd4d05fde0ee3089da96417c5bb4faa5297bc5159218edca9ca4db029aed0827 | Triage

Sharing

General

Target

14be7b6cc8c014515c031a72abe87930_JC.exe
Size

724KB
Sample

231013-b9ymlabg77
MD5

14be7b6cc8c014515c031a72abe87930
SHA1

d9cf21900bd1c32a3c2a4855f7c8b4e3e3402ecc
SHA256

cd4d05fde0ee3089da96417c5bb4faa5297bc5159218edca9ca4db029aed0827
SHA512

510f1ec4c6fdfc4072f18d9acc42ca7856fe062b26dec084381df94bc3cf66aa325b629ba9fbc0bf97b0a8b2c3c1051d4271692ab4c97d3a8dc2b38545650b05
SSDEEP

1536:OKD0A2T3vLbsih9e8bTTpb/IgQmP9zKcTDB4w/UjlQ/dpKRq:352T3siXei5bcmP9JfUjW

Score

7^/10

aspackv2 persistence

Malware Config

Targets

- Target
  
  14be7b6cc8c014515c031a72abe87930_JC.exe
- Size
  
  724KB
- MD5
  
  14be7b6cc8c014515c031a72abe87930
- SHA1
  
  d9cf21900bd1c32a3c2a4855f7c8b4e3e3402ecc
- SHA256
  
  cd4d05fde0ee3089da96417c5bb4faa5297bc5159218edca9ca4db029aed0827
- SHA512
  
  510f1ec4c6fdfc4072f18d9acc42ca7856fe062b26dec084381df94bc3cf66aa325b629ba9fbc0bf97b0a8b2c3c1051d4271692ab4c97d3a8dc2b38545650b05
- SSDEEP
  
  1536:OKD0A2T3vLbsih9e8bTTpb/IgQmP9zKcTDB4w/UjlQ/dpKRq:352T3siXei5bcmP9JfUjW
Score

7^/10

aspackv2 persistence
- ASPack v2.12-2.42
  Detects executables packed with ASPack v2.12-2.42
  aspackv2
- Deletes itself
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

aspackv2persistence

behavioral2

aspackv2persistence