af373298e90af70361a0228e788a49da2fa02ea4cc409aa0d57cf6de562fad73 | Triage

Submit
Reports

Overview

overview

7

Static

static

7

af373298e9...3N.exe

windows7-x64

7

af373298e9...3N.exe

windows10-2004-x64

7

Sharing

General

Target

af373298e90af70361a0228e788a49da2fa02ea4cc409aa0d57cf6de562fad73N.exe
Size

76KB
Sample

241120-xd41ds1mhz
MD5

0010e4bf515c5eb0d852672d0fd11d90
SHA1

26e19f96d91b32dce2a61b4bf4871ee50e7fbefb
SHA256

af373298e90af70361a0228e788a49da2fa02ea4cc409aa0d57cf6de562fad73
SHA512

0c5f0e81e59e818a6d8efd4f70d3c3e79e0c9c17128afacc39a20d268b68c339296369d8a383b81010946641aa1c24ab428593aad586a211375d967fbeda7730
SSDEEP

1536:53Bi77wAlPQzRssMm0wlm0yQzRssI1bOJPqnwHzc3VGu53VUYxC7Cvn39IYMRNb/:53Bg1lQzRssiCyQzRssywHzc3VGu53VI

Score

7^/10

aspackv2 discovery

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

af373298e90af70361a0228e788a49da2fa02ea4cc409aa0d57cf6de562fad73N.exe

Resource

win7-20240903-en

aspackv2 discovery

windows7-x64

6 signatures

120 seconds

Behavioral task

behavioral2

Sample

af373298e90af70361a0228e788a49da2fa02ea4cc409aa0d57cf6de562fad73N.exe

Resource

win10v2004-20241007-en

aspackv2 discovery

windows10-2004-x64

6 signatures

120 seconds

Malware Config

Targets

- Target
  
  af373298e90af70361a0228e788a49da2fa02ea4cc409aa0d57cf6de562fad73N.exe
- Size
  
  76KB
- MD5
  
  0010e4bf515c5eb0d852672d0fd11d90
- SHA1
  
  26e19f96d91b32dce2a61b4bf4871ee50e7fbefb
- SHA256
  
  af373298e90af70361a0228e788a49da2fa02ea4cc409aa0d57cf6de562fad73
- SHA512
  
  0c5f0e81e59e818a6d8efd4f70d3c3e79e0c9c17128afacc39a20d268b68c339296369d8a383b81010946641aa1c24ab428593aad586a211375d967fbeda7730
- SSDEEP
  
  1536:53Bi77wAlPQzRssMm0wlm0yQzRssI1bOJPqnwHzc3VGu53VUYxC7Cvn39IYMRNb/:53Bg1lQzRssiCyQzRssywHzc3VGu53VI
Score

7^/10

aspackv2 discovery
- ASPack v2.12-2.42
  Detects executables packed with ASPack v2.12-2.42
  aspackv2
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

aspackv2discovery

behavioral2

aspackv2discovery

© 2018-2024

Terms | Privacy