98c453758e53d712129dea842bc523275ca60a1b4a5479090cd4fee4b94f0434 | Triage

Submit
Reports

Overview

overview

7

Static

static

7

f5d90d7d8c...18.exe

windows7-x64

7

f5d90d7d8c...18.exe

windows10-2004-x64

7

Sharing

General

Target

f5d90d7d8c283366bc910eb39b09d3ba_JaffaCakes118
Size

180KB
Sample

240417-qep5asac6x
MD5

f5d90d7d8c283366bc910eb39b09d3ba
SHA1

c6057d6eec868c00a640b22e1fdfbcc91fb6e279
SHA256

98c453758e53d712129dea842bc523275ca60a1b4a5479090cd4fee4b94f0434
SHA512

0c62d859806f65a87893a663dd3c8b876802f6ad9dbe7922e03fb724cd26e1cb5e058fc6d17b83abb78629cd91bf273b714b24a9ab24566bafc8dd14d90bc47a
SSDEEP

3072:aXBFZ7IMTV3yT0PQa0Qy2l0TqAWowF3vySeuE0chP0CJL1xgO:oFxyovUC0TqAUoSLQ8CJBx

Score

7^/10

persistence upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

f5d90d7d8c283366bc910eb39b09d3ba_JaffaCakes118.exe

Resource

win7-20240221-en

persistence upx

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

f5d90d7d8c283366bc910eb39b09d3ba_JaffaCakes118.exe

Resource

win10v2004-20240412-en

persistence upx

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  f5d90d7d8c283366bc910eb39b09d3ba_JaffaCakes118
- Size
  
  180KB
- MD5
  
  f5d90d7d8c283366bc910eb39b09d3ba
- SHA1
  
  c6057d6eec868c00a640b22e1fdfbcc91fb6e279
- SHA256
  
  98c453758e53d712129dea842bc523275ca60a1b4a5479090cd4fee4b94f0434
- SHA512
  
  0c62d859806f65a87893a663dd3c8b876802f6ad9dbe7922e03fb724cd26e1cb5e058fc6d17b83abb78629cd91bf273b714b24a9ab24566bafc8dd14d90bc47a
- SSDEEP
  
  3072:aXBFZ7IMTV3yT0PQa0Qy2l0TqAWowF3vySeuE0chP0CJL1xgO:oFxyovUC0TqAUoSLQ8CJBx
Score

7^/10

persistence upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy