93d217ada6900fb84b16f27daa3f54e2472f28d7759e2cacf13b87eed11ca756 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.1056f7d466f1ca40a043fcddcbddd5f0.exe
Size

206KB
Sample

231101-q611wabf44
MD5

1056f7d466f1ca40a043fcddcbddd5f0
SHA1

ab32b8bd3b996b089f72194c32dba99b6ed3f01c
SHA256

93d217ada6900fb84b16f27daa3f54e2472f28d7759e2cacf13b87eed11ca756
SHA512

76149d801a88b0307d8c4aa2833dc5a7653db32014b1e7059c4746940f9460c5da69641187fc2e5078ae4afc142ba89fda6b452a3b8661723a63fd39778560a3
SSDEEP

6144:t6vPAfc8qjPVEw5f7IqfkZqFG8v6ZR0jQlsELGqpXP:t6AaR5f7IqfkGGmElZXP

Score

8^/10

aspackv2 persistence

Malware Config

Targets

- Target
  
  NEAS.1056f7d466f1ca40a043fcddcbddd5f0.exe
- Size
  
  206KB
- MD5
  
  1056f7d466f1ca40a043fcddcbddd5f0
- SHA1
  
  ab32b8bd3b996b089f72194c32dba99b6ed3f01c
- SHA256
  
  93d217ada6900fb84b16f27daa3f54e2472f28d7759e2cacf13b87eed11ca756
- SHA512
  
  76149d801a88b0307d8c4aa2833dc5a7653db32014b1e7059c4746940f9460c5da69641187fc2e5078ae4afc142ba89fda6b452a3b8661723a63fd39778560a3
- SSDEEP
  
  6144:t6vPAfc8qjPVEw5f7IqfkZqFG8v6ZR0jQlsELGqpXP:t6AaR5f7IqfkGGmElZXP
Score

8^/10

aspackv2 persistence
- Modifies AppInit DLL entries
  persistence
- ASPack v2.12-2.42
  Detects executables packed with ASPack v2.12-2.42
  aspackv2
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

aspackv2persistence

behavioral2