Overview

overview

8

Static

static

7

bfb6533e27...1N.exe

windows7-x64

8

bfb6533e27...1N.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    bfb6533e27dd808db01dba04064a2b776430592597fe1ca77ade9d345b5ab961N

  • Size

    191KB

  • Sample

    241004-pmp9layalc

  • MD5

    9af890a0360aaa76f01e401bb10f4fc0

  • SHA1

    8a47ee433da5a8ae1265620f5024622e02134fbd

  • SHA256

    bfb6533e27dd808db01dba04064a2b776430592597fe1ca77ade9d345b5ab961

  • SHA512

    1473e230c275c3afbac437f3bbb0c5c817747553b6e3bda3377a3248bb3370c223a164dc77736adccae9cf86669bc12c660f14f1113250a8f5c654e9621234af

  • SSDEEP

    3072:rYubs4vIPfIOKyCRfyJiJJMXybJg30TZZ+MbpqdNjfBDckH8sbigzwQjoy:Euk6fK6tixMbwNL+kDrt

Score
8/10
aspackv2discoverypersistenceprivilege_escalation

Malware Config

Targets

    • Target

      bfb6533e27dd808db01dba04064a2b776430592597fe1ca77ade9d345b5ab961N

    • Size

      191KB

    • MD5

      9af890a0360aaa76f01e401bb10f4fc0

    • SHA1

      8a47ee433da5a8ae1265620f5024622e02134fbd

    • SHA256

      bfb6533e27dd808db01dba04064a2b776430592597fe1ca77ade9d345b5ab961

    • SHA512

      1473e230c275c3afbac437f3bbb0c5c817747553b6e3bda3377a3248bb3370c223a164dc77736adccae9cf86669bc12c660f14f1113250a8f5c654e9621234af

    • SSDEEP

      3072:rYubs4vIPfIOKyCRfyJiJJMXybJg30TZZ+MbpqdNjfBDckH8sbigzwQjoy:Euk6fK6tixMbwNL+kDrt

    Score
    8/10
    aspackv2discoverypersistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • ASPack v2.12-2.42

      Detects executables packed with ASPack v2.12-2.42

      aspackv2

    • Executes dropped EXE

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks