Overview

overview

7

Static

static

3

w8.exe

windows7-x64

7

w8.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    w8.exe

  • Size

    3.0MB

  • Sample

    231119-p12vjsaa37

  • MD5

    b26b11b6fc2198cc10858fe3e23f192d

  • SHA1

    6b5259e464877eb1e07c249fbed24d9c3f276061

  • SHA256

    90bd5478c2950cf46779d6192016860e996b2ac05dc79a3567e398b3da9f8c16

  • SHA512

    405750c5bf1b3a0c5bc3e4a934e36146ccb83e713d80e66427f1974527da910bee0dae743f306943e30fcd4885b21ffcad0b5e4906745d8cfc6b75a1a5c4306b

  • SSDEEP

    49152:Bb9yyk9/nstDJBM9P3lkG9xc8jzBj/Bzsqv6QHjJJgSlAmNpPo8xu0x5R/ASPq0W:BJXS/st9S9PmLMBjpOAjJqaRhxXN/AH5

Score
7/10
aspackv2

Malware Config

Targets

    • Target

      w8.exe

    • Size

      3.0MB

    • MD5

      b26b11b6fc2198cc10858fe3e23f192d

    • SHA1

      6b5259e464877eb1e07c249fbed24d9c3f276061

    • SHA256

      90bd5478c2950cf46779d6192016860e996b2ac05dc79a3567e398b3da9f8c16

    • SHA512

      405750c5bf1b3a0c5bc3e4a934e36146ccb83e713d80e66427f1974527da910bee0dae743f306943e30fcd4885b21ffcad0b5e4906745d8cfc6b75a1a5c4306b

    • SSDEEP

      49152:Bb9yyk9/nstDJBM9P3lkG9xc8jzBj/Bzsqv6QHjJJgSlAmNpPo8xu0x5R/ASPq0W:BJXS/st9S9PmLMBjpOAjJqaRhxXN/AH5

    Score
    7/10
    aspackv2

    • ASPack v2.12-2.42

      Detects executables packed with ASPack v2.12-2.42

      aspackv2

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks