Overview

overview

7

Static

static

7

fd74feabc6...18.exe

windows7-x64

7

fd74feabc6...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    fd74feabc63926cfdafd0e20aa4ff605_JaffaCakes118

  • Size

    62KB

  • Sample

    240420-x1q22sgd3w

  • MD5

    fd74feabc63926cfdafd0e20aa4ff605

  • SHA1

    b93aa37d53f6f1d0d7e76a992898c7a3183e9891

  • SHA256

    a0677d67e9fb605e3cd3224acce7b9dfa698960e394d953f1b95a48bded83cbb

  • SHA512

    c5a90622876b29b5667dd750efb5d161de6bdebefdef1e7c1a016053995cc50e7ee3b2c0794ae58885c8cf34a2eff7128cba9753ea885e0db3c0d3bceb4b309f

  • SSDEEP

    1536:wKpeaBg5kCla/ObPwazJR2b1z74r+d/5Yp:wKng5keTv7w

Score
7/10
aspackv2persistence

Malware Config

Targets

    • Target

      fd74feabc63926cfdafd0e20aa4ff605_JaffaCakes118

    • Size

      62KB

    • MD5

      fd74feabc63926cfdafd0e20aa4ff605

    • SHA1

      b93aa37d53f6f1d0d7e76a992898c7a3183e9891

    • SHA256

      a0677d67e9fb605e3cd3224acce7b9dfa698960e394d953f1b95a48bded83cbb

    • SHA512

      c5a90622876b29b5667dd750efb5d161de6bdebefdef1e7c1a016053995cc50e7ee3b2c0794ae58885c8cf34a2eff7128cba9753ea885e0db3c0d3bceb4b309f

    • SSDEEP

      1536:wKpeaBg5kCla/ObPwazJR2b1z74r+d/5Yp:wKng5keTv7w

    Score
    7/10
    aspackv2persistence

    • ASPack v2.12-2.42

      Detects executables packed with ASPack v2.12-2.42

      aspackv2

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Privilege Escalation

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Defense Evasion

Modify Registry

2
T1112

Subvert Trust Controls

1
T1553

Install Root Certificate

1
T1553.004

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks