f852d4e73b44a11161d872b516b223cfee635572a164ff3d1868f8e8710e156b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f852d4e73b44a11161d872b516b223cfee635572a164ff3d1868f8e8710e156b
Size

2.6MB
Sample

240625-kzvbvstcqr
MD5

c027af0087dfad5157559eac664710db
SHA1

e580eae7304b05984196b61a0147ac57337cca2e
SHA256

f852d4e73b44a11161d872b516b223cfee635572a164ff3d1868f8e8710e156b
SHA512

9e4616665614122b6a196ccdae9d48cae2511d9ca83080a4ffce81b0afc7319d2a4b0f29aa54c7552eddbca2825b54b4e067bd5790acd604ac8348b20702710f
SSDEEP

49152:SgzEYEDc7hc+guva3NBDYOAZwKlZRzWTflZRzWwT0cec6:SoEYEDKmMOAZwKlZdOflZd8

Score

7^/10

aspackv2 persistence

Malware Config

Targets

- Target
  
  f852d4e73b44a11161d872b516b223cfee635572a164ff3d1868f8e8710e156b
- Size
  
  2.6MB
- MD5
  
  c027af0087dfad5157559eac664710db
- SHA1
  
  e580eae7304b05984196b61a0147ac57337cca2e
- SHA256
  
  f852d4e73b44a11161d872b516b223cfee635572a164ff3d1868f8e8710e156b
- SHA512
  
  9e4616665614122b6a196ccdae9d48cae2511d9ca83080a4ffce81b0afc7319d2a4b0f29aa54c7552eddbca2825b54b4e067bd5790acd604ac8348b20702710f
- SSDEEP
  
  49152:SgzEYEDc7hc+guva3NBDYOAZwKlZRzWTflZRzWwT0cec6:SoEYEDKmMOAZwKlZdOflZd8
Score

7^/10

aspackv2 persistence
- ASPack v2.12-2.42
  Detects executables packed with ASPack v2.12-2.42
  aspackv2
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

aspackv2persistence

behavioral2

aspackv2persistence