Overview

overview

7

Static

static

7

9c2b29e00b...e7.exe

windows7-x64

7

9c2b29e00b...e7.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    9c2b29e00b1b3075fc5488265c58413da15d345f8f4fbfd0d3e093ecf7537de7

  • Size

    430KB

  • Sample

    240329-dgb91age44

  • MD5

    e669f68966c75452231ac9ddc5561ded

  • SHA1

    605da3577624fb8aa6dfdc042543c737a7cfa8b9

  • SHA256

    9c2b29e00b1b3075fc5488265c58413da15d345f8f4fbfd0d3e093ecf7537de7

  • SHA512

    b63cded4668fbab34e173711b75e2a124f9d79d67f11556b192e40d3047f18ec193941032c57f1ed10ef2f7b7d3c834b8a938bd9347446d048d6c354e65c079b

  • SSDEEP

    12288:CzCr6D+2OkeG9F1xk1kwZRo5FbDFBQX6f6AkdIAELARixZFDuh:Cza2OkeG9jxyTo5Fbz/zkOLLARixXDuh

Score
7/10
aspackv2persistence

Malware Config

Targets

    • Target

      9c2b29e00b1b3075fc5488265c58413da15d345f8f4fbfd0d3e093ecf7537de7

    • Size

      430KB

    • MD5

      e669f68966c75452231ac9ddc5561ded

    • SHA1

      605da3577624fb8aa6dfdc042543c737a7cfa8b9

    • SHA256

      9c2b29e00b1b3075fc5488265c58413da15d345f8f4fbfd0d3e093ecf7537de7

    • SHA512

      b63cded4668fbab34e173711b75e2a124f9d79d67f11556b192e40d3047f18ec193941032c57f1ed10ef2f7b7d3c834b8a938bd9347446d048d6c354e65c079b

    • SSDEEP

      12288:CzCr6D+2OkeG9F1xk1kwZRo5FbDFBQX6f6AkdIAELARixZFDuh:Cza2OkeG9jxyTo5Fbz/zkOLLARixXDuh

    Score
    7/10
    aspackv2persistence

    • ASPack v2.12-2.42

      Detects executables packed with ASPack v2.12-2.42

      aspackv2

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Drops startup file

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks