Overview

overview

7

Static

static

7

36472a2ffc...93.exe

windows7-x64

7

36472a2ffc...93.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    36472a2ffc1a65ebe248510834114e74fd0cbd82ca5bf657e037a482df9a2193

  • Size

    430KB

  • Sample

    241003-skqn5avflf

  • MD5

    6164f8dab2ebe4545fd435602b3d53b9

  • SHA1

    77eef51ace2629bdf27c876b6605c44877297116

  • SHA256

    36472a2ffc1a65ebe248510834114e74fd0cbd82ca5bf657e037a482df9a2193

  • SHA512

    631b8946cc2fa1d52abc64392418dd2203d0fe57af8b59a90945e9933235af9b3d1420442463516f504ecc4600d378ed2917bd68591e4e6a727edbacb6ea8bcc

  • SSDEEP

    12288:CzCr6D+2OkeG9F1xk1kwZRo5FbDFBQX6f6AkdIAELARixZFDuC:Cza2OkeG9jxyTo5Fbz/zkOLLARixXDuC

Score
7/10
aspackv2discoverypersistence

Malware Config

Targets

    • Target

      36472a2ffc1a65ebe248510834114e74fd0cbd82ca5bf657e037a482df9a2193

    • Size

      430KB

    • MD5

      6164f8dab2ebe4545fd435602b3d53b9

    • SHA1

      77eef51ace2629bdf27c876b6605c44877297116

    • SHA256

      36472a2ffc1a65ebe248510834114e74fd0cbd82ca5bf657e037a482df9a2193

    • SHA512

      631b8946cc2fa1d52abc64392418dd2203d0fe57af8b59a90945e9933235af9b3d1420442463516f504ecc4600d378ed2917bd68591e4e6a727edbacb6ea8bcc

    • SSDEEP

      12288:CzCr6D+2OkeG9F1xk1kwZRo5FbDFBQX6f6AkdIAELARixZFDuC:Cza2OkeG9jxyTo5Fbz/zkOLLARixXDuC

    Score
    7/10
    aspackv2discoverypersistence

    • ASPack v2.12-2.42

      Detects executables packed with ASPack v2.12-2.42

      aspackv2

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Drops startup file

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks