83942bd35f1dc4279c0a5068657bad21cbaf7106e444b0397a58bf7b5c4a2579 | Triage

Sharing

General

Target

0776b76e63781e1d34cac8a0571eeff4_JaffaCakes118
Size

459KB
Sample

240620-tathpsvhph
MD5

0776b76e63781e1d34cac8a0571eeff4
SHA1

d02264c95f19f62f10c86e3ff3ecf0252a37b78a
SHA256

83942bd35f1dc4279c0a5068657bad21cbaf7106e444b0397a58bf7b5c4a2579
SHA512

54aa6441885d3ea2eb43a871005f39afd74966ff27453cc99a454ea9392b2a3e326b5f7fc42a19c709aaeca7674dcabaf91054a632f6fdf405022021b58837de
SSDEEP

12288:8nt0ywaJE6tgzWNL6co9dntB8wPAQOc+0zTQ8Kr6Z3d:8nI16pCfn86ARgs8KmZN

Score

10^/10

evasion trojan upx

Malware Config

Targets

- Target
  
  cracker for jid orginal.exe
- Size
  
  96KB
- MD5
  
  59b476ad33a1630029280d5e8f0fc5e4
- SHA1
  
  51ecc7f7aedb9dcba8c90532dbe08cfe5ac65132
- SHA256
  
  64456d027d226e9853adbe2aa8dd4b983aace222251d76f15f83c51603797a93
- SHA512
  
  824af14a6e334a61f62e348c94582fab37516cbd2380b057f7c02fe83d0ac294f5f53a93b585036608eb1b5bbeee1b15c6c9074dd0f11a31c1eb9353feba46bd
- SSDEEP
  
  1536:/05URS+yFHpgrEwioNX7NKFukJ1PWDz9C6RBlqrL57tv/:MaM+yFWIwLNX70kkJ1mzhR3qZtH
Score

10^/10

evasion trojan upx
- UAC bypass
  evasion trojan
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Abuse Elevation Control Mechanism

Bypass User Account Control

Defense Evasion

Abuse Elevation Control Mechanism

Bypass User Account Control

Impair Defenses

Disable or Modify Tools

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

evasiontrojanupx