3e67651571f874b203bef3628684bd2d3ca0e53e992d5f2cec6209c26774ca30 | Triage

Sharing

General

Target

f6489514b4988291aa55a8dccfe90925_JaffaCakes118
Size

15KB
Sample

240417-vvvf6shg8s
MD5

f6489514b4988291aa55a8dccfe90925
SHA1

7797ffc590ac14d2260a0ef6feb5d3c46a68b518
SHA256

3e67651571f874b203bef3628684bd2d3ca0e53e992d5f2cec6209c26774ca30
SHA512

dacb91e01750badfe09cc47c3410866bfe180d3043cd47a50ca2c8efac3fd0257b1ab7040a391aaf5a369786e20346fca4347e95c1fdd39f42ddf0aeee4e1c49
SSDEEP

192:OJbRloEPcRKckFWBcEFJYsEmyzZhsIzDtk0HjQvWDWHofKizJcKaRzA:OJFloE0cckFWBjFWsbUhvbHbaeKK2R

Score

7^/10

persistence upx

Malware Config

Targets

- Target
  
  f6489514b4988291aa55a8dccfe90925_JaffaCakes118
- Size
  
  15KB
- MD5
  
  f6489514b4988291aa55a8dccfe90925
- SHA1
  
  7797ffc590ac14d2260a0ef6feb5d3c46a68b518
- SHA256
  
  3e67651571f874b203bef3628684bd2d3ca0e53e992d5f2cec6209c26774ca30
- SHA512
  
  dacb91e01750badfe09cc47c3410866bfe180d3043cd47a50ca2c8efac3fd0257b1ab7040a391aaf5a369786e20346fca4347e95c1fdd39f42ddf0aeee4e1c49
- SSDEEP
  
  192:OJbRloEPcRKckFWBcEFJYsEmyzZhsIzDtk0HjQvWDWHofKizJcKaRzA:OJFloE0cckFWBjFWsbUhvbHbaeKK2R
Score

7^/10

persistence upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2