fee95d2e4ea839eb7f9df09eb13f44db7e4fbc414b939544cc27de653b06387f | Triage

Sharing

General

Target

fee95d2e4ea839eb7f9df09eb13f44db7e4fbc414b939544cc27de653b06387fN.exe
Size

469KB
Sample

241119-nwxvcsvhjh
MD5

9be42aaae99a26d5fc5ebabd464d2410
SHA1

574c3bcee1ca0dbedc993240925565e28b187b96
SHA256

fee95d2e4ea839eb7f9df09eb13f44db7e4fbc414b939544cc27de653b06387f
SHA512

c41b4c4f7e682feb0b48df2fd212b5b2df775ae8a0241d8bafd810e2e118aff29d4315b5c4c4218f9fdacd0dc3717d0f799d46dcf9e7c743849635ef3c1515c7
SSDEEP

12288:5LD+k3HVJ5xDfp4D7/SAOZi+5v4+rcKftt:53JVJTt4D7/SAOZi+5v48cKfD

Score

7^/10

aspackv2 discovery persistence

Malware Config

Targets

- Target
  
  fee95d2e4ea839eb7f9df09eb13f44db7e4fbc414b939544cc27de653b06387fN.exe
- Size
  
  469KB
- MD5
  
  9be42aaae99a26d5fc5ebabd464d2410
- SHA1
  
  574c3bcee1ca0dbedc993240925565e28b187b96
- SHA256
  
  fee95d2e4ea839eb7f9df09eb13f44db7e4fbc414b939544cc27de653b06387f
- SHA512
  
  c41b4c4f7e682feb0b48df2fd212b5b2df775ae8a0241d8bafd810e2e118aff29d4315b5c4c4218f9fdacd0dc3717d0f799d46dcf9e7c743849635ef3c1515c7
- SSDEEP
  
  12288:5LD+k3HVJ5xDfp4D7/SAOZi+5v4+rcKftt:53JVJTt4D7/SAOZi+5v48cKfD
Score

7^/10

aspackv2 discovery persistence
- ASPack v2.12-2.42
  Detects executables packed with ASPack v2.12-2.42
  aspackv2
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

aspackv2discoverypersistence

behavioral2

aspackv2discoverypersistence