nullmixer | 87114e06bb514c62cf666df6a02a395c22fedb5d0e951f40a91aa0a3974e8365 | Triage

Submit
Reports

Overview

overview

Static

static

3

ba3a445437...70.exe

windows7-x64

ba3a445437...70.exe

windows10-2004-x64

setup_installer.exe

windows7-x64

setup_installer.exe

windows10-2004-x64

Sharing

General

Target

ba3a4454371bf863c17d9f0c05b58d70
Size

4.0MB
Sample

240308-ccskracc26
MD5

ba3a4454371bf863c17d9f0c05b58d70
SHA1

db9cde78464b09abbd5cf8eb648dea7870cd09e6
SHA256

87114e06bb514c62cf666df6a02a395c22fedb5d0e951f40a91aa0a3974e8365
SHA512

b40addffc8fdced785214dcd3bbf9486d9dbc110e00a88748b16a092a0ec82586dbc5527bac05ca64e0c750d81f156e44bab50d3cbb63f7d6355f0cafa963de4
SSDEEP

98304:J9QHfx2g0Hb3jbK++jMYaFcYLUgk38QpJP+fH:J9Q/x2bXbK5FaqYot37gfH

Score

10^/10

nullmixer aspackv2 dropper

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

ba3a4454371bf863c17d9f0c05b58d70.exe

Resource

win7-20240215-en

nullmixer aspackv2 dropper

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

ba3a4454371bf863c17d9f0c05b58d70.exe

Resource

win10v2004-20240226-en

nullmixer aspackv2 dropper

windows10-2004-x64

9 signatures

150 seconds

Behavioral task

behavioral3

Sample

setup_installer.exe

Resource

win7-20240215-en

nullmixer aspackv2 dropper

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral4

Sample

setup_installer.exe

Resource

win10v2004-20240226-en

nullmixer aspackv2 dropper

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Extracted

Family

nullmixer

C2

http://watira.xyz/

Targets

- Target
  
  ba3a4454371bf863c17d9f0c05b58d70
- Size
  
  4.0MB
- MD5
  
  ba3a4454371bf863c17d9f0c05b58d70
- SHA1
  
  db9cde78464b09abbd5cf8eb648dea7870cd09e6
- SHA256
  
  87114e06bb514c62cf666df6a02a395c22fedb5d0e951f40a91aa0a3974e8365
- SHA512
  
  b40addffc8fdced785214dcd3bbf9486d9dbc110e00a88748b16a092a0ec82586dbc5527bac05ca64e0c750d81f156e44bab50d3cbb63f7d6355f0cafa963de4
- SSDEEP
  
  98304:J9QHfx2g0Hb3jbK++jMYaFcYLUgk38QpJP+fH:J9Q/x2bXbK5FaqYot37gfH
Score

10^/10

nullmixer aspackv2 dropper
- NullMixer
  NullMixer is a malware dropper leading to an infection chain of a wide variety of malware families.
  dropper nullmixer
- ASPack v2.12-2.42
  Detects executables packed with ASPack v2.12-2.42
  aspackv2
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  setup_installer.exe
- Size
  
  4.0MB
- MD5
  
  5118ea744a34092421a36471432b1231
- SHA1
  
  8b08c5a40eff8fa39fe1819b4a06a0405e228600
- SHA256
  
  a07170f47dc2c8a226685a32227afc22b87ff6197bc880c5c351376304bf3434
- SHA512
  
  238ab1c76b65a89a237165e641543f9e416fc9e24d8f536459eacb1fd4500e9b8337c54201e33c84ed384d14633c6493103547a8db137eb9c19fd6e8e1a22ccc
- SSDEEP
  
  98304:x9P2x7Xmil1mBbgoXAusjzxFmt7V40/hD28ndCvLUBsKciW:x9P2xLmi6OoZoIXSLUCKciW
Score

10^/10

nullmixer aspackv2 dropper
- NullMixer
  NullMixer is a malware dropper leading to an infection chain of a wide variety of malware families.
  dropper nullmixer
- ASPack v2.12-2.42
  Detects executables packed with ASPack v2.12-2.42
  aspackv2
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral3 behavioral4

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

nullmixeraspackv2dropper

behavioral2

nullmixeraspackv2dropper

behavioral3

nullmixeraspackv2dropper

behavioral4

nullmixeraspackv2dropper

© 2018-2025

Terms | Privacy