6de0450287b4e860f38137785efb32d7ec88dd8520e323e77cc588a829df856d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f00478cd872bdcc3e428778e55c7418f_JaffaCakes118
Size

8KB
Sample

240415-b8yk7sec2z
MD5

f00478cd872bdcc3e428778e55c7418f
SHA1

c461bb010a0688b42e193e40cb991bccd8222e30
SHA256

6de0450287b4e860f38137785efb32d7ec88dd8520e323e77cc588a829df856d
SHA512

9b9ea91380dc6318083cc9d4d818a97dae2efb8e11c9e17da3de2eced0698fd9ab83d90d3ca2d9e24d8061f99f6955d3791be66c23977f7501a209bdec2cf0b0
SSDEEP

96:OWXtHaSzwtlsTBAr9xBBxcRo/KH30sv9GZeq3+0JUBaE4DmcGAGx0VHSX6+8CKss:1XIS09io/KHRv9nqNah9x0NFvW2bz

Score

8^/10

persistence upx

Malware Config

Targets

- Target
  
  f00478cd872bdcc3e428778e55c7418f_JaffaCakes118
- Size
  
  8KB
- MD5
  
  f00478cd872bdcc3e428778e55c7418f
- SHA1
  
  c461bb010a0688b42e193e40cb991bccd8222e30
- SHA256
  
  6de0450287b4e860f38137785efb32d7ec88dd8520e323e77cc588a829df856d
- SHA512
  
  9b9ea91380dc6318083cc9d4d818a97dae2efb8e11c9e17da3de2eced0698fd9ab83d90d3ca2d9e24d8061f99f6955d3791be66c23977f7501a209bdec2cf0b0
- SSDEEP
  
  96:OWXtHaSzwtlsTBAr9xBBxcRo/KH30sv9GZeq3+0JUBaE4DmcGAGx0VHSX6+8CKss:1XIS09io/KHRv9nqNah9x0NFvW2bz
Score

8^/10

persistence upx
- Adds policy Run key to start application
  persistence
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2