Overview

overview

9

Static

static

7

VirusShare...31.exe

windows7-x64

9

VirusShare...31.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    VirusShare_4261e731ecac42e642f12adef0a4ab31

  • Size

    266KB

  • Sample

    240204-tf3cssdfc6

  • MD5

    4261e731ecac42e642f12adef0a4ab31

  • SHA1

    0884cd08beb0c0a168cac53bf2cd45e7a7f0affe

  • SHA256

    28f80933370b6e7d57ebf251edef3bcadd9b51205821b4439e377f854b42a4ab

  • SHA512

    df08fd0be5c54aecf7d50747d33b3ee314aac3d3959f72ff09b5c5d9352cb5f05a076b101d2ca95123edb3bc4e3dd3f77e4916b2214bbbb026e791c8015154fd

  • SSDEEP

    6144:mzzdehcSBSAH9fzWqYLBQUDchJ1EclFsrwENgQi94t5apTYFoP:DfSEWpeNNnF7ECQ7t5eTB

Score
9/10
aspackv2

Malware Config

Targets

    • Target

      VirusShare_4261e731ecac42e642f12adef0a4ab31

    • Size

      266KB

    • MD5

      4261e731ecac42e642f12adef0a4ab31

    • SHA1

      0884cd08beb0c0a168cac53bf2cd45e7a7f0affe

    • SHA256

      28f80933370b6e7d57ebf251edef3bcadd9b51205821b4439e377f854b42a4ab

    • SHA512

      df08fd0be5c54aecf7d50747d33b3ee314aac3d3959f72ff09b5c5d9352cb5f05a076b101d2ca95123edb3bc4e3dd3f77e4916b2214bbbb026e791c8015154fd

    • SSDEEP

      6144:mzzdehcSBSAH9fzWqYLBQUDchJ1EclFsrwENgQi94t5apTYFoP:DfSEWpeNNnF7ECQ7t5eTB

    Score
    9/10
    aspackv2

    • Detects Windows executables referencing non-Windows User-Agents

    • ASPack v2.12-2.42

      Detects executables packed with ASPack v2.12-2.42

      aspackv2

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks