57a552c7e5095d88387654544e62622a0057e3337cbcfb031cfdb9fd9297ec2c | Triage

Sharing

General

Target

592ccee20eecc34ac0198151c1bf76b6
Size

29KB
Sample

240113-ts5zfscbej
MD5

592ccee20eecc34ac0198151c1bf76b6
SHA1

9692cdbf4a9093a70232eba03bb481c07ba25f65
SHA256

57a552c7e5095d88387654544e62622a0057e3337cbcfb031cfdb9fd9297ec2c
SHA512

9d89e75a73c97449e7d3aeb8979c7913f2df9fa20994a5bbe686a0eb27e9e1df51be0e7f5476f9e471939d2804c4f300c284508c3592ba06c4ff87a7606c53b1
SSDEEP

768:YhoUdKrt/s8ppTCJLSN2lV1sT8x+deVh:fGKQJLSN2lVmT5

Score

10^/10

aspackv2 persistence

Malware Config

Targets

- Target
  
  592ccee20eecc34ac0198151c1bf76b6
- Size
  
  29KB
- MD5
  
  592ccee20eecc34ac0198151c1bf76b6
- SHA1
  
  9692cdbf4a9093a70232eba03bb481c07ba25f65
- SHA256
  
  57a552c7e5095d88387654544e62622a0057e3337cbcfb031cfdb9fd9297ec2c
- SHA512
  
  9d89e75a73c97449e7d3aeb8979c7913f2df9fa20994a5bbe686a0eb27e9e1df51be0e7f5476f9e471939d2804c4f300c284508c3592ba06c4ff87a7606c53b1
- SSDEEP
  
  768:YhoUdKrt/s8ppTCJLSN2lV1sT8x+deVh:fGKQJLSN2lVmT5
Score

10^/10

persistence
- Modifies WinLogon for persistence
  persistence
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Winlogon Helper DLL

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Winlogon Helper DLL

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2