Overview

overview

7

Static

static

7

028845e2dd...1a.exe

windows7-x64

7

028845e2dd...1a.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    028845e2dd5cf647b41149bfa46eb31a

  • Size

    3.1MB

  • Sample

    231229-ytgepsgffl

  • MD5

    028845e2dd5cf647b41149bfa46eb31a

  • SHA1

    1a5d137b2add6aeec5a67e92a840bec17be1411f

  • SHA256

    26900de3817ddfb8f4632efa334306cf568c0aeced90430d8dce0201cc1b3695

  • SHA512

    7ab4ac72f27a7974b84df93d0c62f551cb6b12a6adcb728cb667754865ded41ce4bcd0d1e703b3bcf7a4ea17ede4eba3a6f5ebec0a956bce745dbabd4365fa44

  • SSDEEP

    98304:c9NrOO53+sNi9XwgwfovJdXN0B7+skc9IW1dXgfC/MHmg:c7D53xi9XwgwA

Score
7/10
aspackv2persistencespywarestealer

Malware Config

Targets

    • Target

      028845e2dd5cf647b41149bfa46eb31a

    • Size

      3.1MB

    • MD5

      028845e2dd5cf647b41149bfa46eb31a

    • SHA1

      1a5d137b2add6aeec5a67e92a840bec17be1411f

    • SHA256

      26900de3817ddfb8f4632efa334306cf568c0aeced90430d8dce0201cc1b3695

    • SHA512

      7ab4ac72f27a7974b84df93d0c62f551cb6b12a6adcb728cb667754865ded41ce4bcd0d1e703b3bcf7a4ea17ede4eba3a6f5ebec0a956bce745dbabd4365fa44

    • SSDEEP

      98304:c9NrOO53+sNi9XwgwfovJdXN0B7+skc9IW1dXgfC/MHmg:c7D53xi9XwgwA

    Score
    7/10
    aspackv2persistencespywarestealer

    • ASPack v2.12-2.42

      Detects executables packed with ASPack v2.12-2.42

      aspackv2

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks