fd8c7f6472957210b44c70b18cce1a8f4060093af30e581efe50b2022133eee3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

NEAS.f74949842d19ec2996e7a1910b969d60.exe
Size

1.4MB
Sample

231105-x569tsba6s
MD5

f74949842d19ec2996e7a1910b969d60
SHA1

0adf231ca0f6f12c4760939c724648919e5e8d64
SHA256

fd8c7f6472957210b44c70b18cce1a8f4060093af30e581efe50b2022133eee3
SHA512

0beb3cd144700da973fa70428365253e78540f340235c04812eea936ee74a329599f2fae1132ef1bfe1d72881562c9f0fd4c6c9553488720ada0d29beb176f44
SSDEEP

24576:5oyAKhNR+6umN9/aCLYvQpp4CdDSwlX0+Aydqhz5LDgFd1i/GPUgP:5vBhf+OnsapxdOwlX0z3zDgFdvs

Score

7^/10

aspackv2 persistence

Malware Config

Targets

- Target
  
  NEAS.f74949842d19ec2996e7a1910b969d60.exe
- Size
  
  1.4MB
- MD5
  
  f74949842d19ec2996e7a1910b969d60
- SHA1
  
  0adf231ca0f6f12c4760939c724648919e5e8d64
- SHA256
  
  fd8c7f6472957210b44c70b18cce1a8f4060093af30e581efe50b2022133eee3
- SHA512
  
  0beb3cd144700da973fa70428365253e78540f340235c04812eea936ee74a329599f2fae1132ef1bfe1d72881562c9f0fd4c6c9553488720ada0d29beb176f44
- SSDEEP
  
  24576:5oyAKhNR+6umN9/aCLYvQpp4CdDSwlX0+Aydqhz5LDgFd1i/GPUgP:5vBhf+OnsapxdOwlX0z3zDgFdvs
Score

7^/10

aspackv2 persistence
- ASPack v2.12-2.42
  Detects executables packed with ASPack v2.12-2.42
  aspackv2
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

aspackv2persistence

behavioral2

aspackv2persistence