2cc6f8eedf121b8769237e3c224b0fdb5db223b8e86570c4a50022708618acd9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

00a1f6b76b6e4005fc4bd9f7775ae461_JaffaCakes118
Size

25KB
Sample

240619-1gg7ksxcnj
MD5

00a1f6b76b6e4005fc4bd9f7775ae461
SHA1

802d347d2a64bd006a3e3ce74e1884626cef6712
SHA256

2cc6f8eedf121b8769237e3c224b0fdb5db223b8e86570c4a50022708618acd9
SHA512

058ac30c197dd542057ecc6e44c0673a7b67449de997622f6bcefa0bd4bd881f9beb73cbce56263b641581c0ffb9199fff8874426549975421a8b9999c9bc656
SSDEEP

768:ZDbtnUE5fRbe3hhKhRoHOX5RfZLitm5lb:ZDGWKRhKKmfYty

Score

10^/10

persistence upx

Malware Config

Targets

- Target
  
  00a1f6b76b6e4005fc4bd9f7775ae461_JaffaCakes118
- Size
  
  25KB
- MD5
  
  00a1f6b76b6e4005fc4bd9f7775ae461
- SHA1
  
  802d347d2a64bd006a3e3ce74e1884626cef6712
- SHA256
  
  2cc6f8eedf121b8769237e3c224b0fdb5db223b8e86570c4a50022708618acd9
- SHA512
  
  058ac30c197dd542057ecc6e44c0673a7b67449de997622f6bcefa0bd4bd881f9beb73cbce56263b641581c0ffb9199fff8874426549975421a8b9999c9bc656
- SSDEEP
  
  768:ZDbtnUE5fRbe3hhKhRoHOX5RfZLitm5lb:ZDGWKRhKKmfYty
Score

10^/10

persistence upx
- Modifies WinLogon for persistence
  persistence
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Winlogon Helper DLL

Privilege Escalation

Boot or Logon Autostart Execution

Winlogon Helper DLL

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2