e099136e694e8bcd16f268c51119bc2652b9aa15e961b615d1bf5304522129f1 | Triage

Sharing

General

Target

2025-03-31_eecd2c9498f72024c45a232f5e20e5e2_black-basta_cobalt-strike
Size

266KB
Sample

250331-snbz5svnw5
MD5

eecd2c9498f72024c45a232f5e20e5e2
SHA1

576835bd29d13bf18cddc54fc740dd91227e6ebc
SHA256

e099136e694e8bcd16f268c51119bc2652b9aa15e961b615d1bf5304522129f1
SHA512

a06507f0e3d5b4f02e959eace08b46b0ec50ee9d34692eb876c7bd04c50a6deafe2698ca6e3346692edcb52c1b9306bf085baac5d8c3ae2100b243f94af67987
SSDEEP

6144:XUZyJ9BJGQOF1vf5pS8Vb6IJ6noeL3X81:5J9XXO7vxpS8xPKX81

Score

7^/10

aspackv2 discovery persistence

Malware Config

Targets

- Target
  
  2025-03-31_eecd2c9498f72024c45a232f5e20e5e2_black-basta_cobalt-strike
- Size
  
  266KB
- MD5
  
  eecd2c9498f72024c45a232f5e20e5e2
- SHA1
  
  576835bd29d13bf18cddc54fc740dd91227e6ebc
- SHA256
  
  e099136e694e8bcd16f268c51119bc2652b9aa15e961b615d1bf5304522129f1
- SHA512
  
  a06507f0e3d5b4f02e959eace08b46b0ec50ee9d34692eb876c7bd04c50a6deafe2698ca6e3346692edcb52c1b9306bf085baac5d8c3ae2100b243f94af67987
- SSDEEP
  
  6144:XUZyJ9BJGQOF1vf5pS8Vb6IJ6noeL3X81:5J9XXO7vxpS8xPKX81
Score

7^/10

aspackv2 discovery persistence
- ASPack v2.12-2.42
  Detects executables packed with ASPack v2.12-2.42
  aspackv2
- Executes dropped EXE
- Adds Run key to start application
  persistence
behavioral1

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

aspackv2discoverypersistence