70acd2553a769e1583c87c3911b2adc0856983f8498e923b5a03fa963b16cc7b | Triage

Sharing

General

Target

28bd155dde01b5ce7ac0c2f0a5a14dab_JaffaCakes118
Size

17KB
Sample

240706-td68zaweqg
MD5

28bd155dde01b5ce7ac0c2f0a5a14dab
SHA1

9387fa2258016c31b260059cd33781a972de28bf
SHA256

70acd2553a769e1583c87c3911b2adc0856983f8498e923b5a03fa963b16cc7b
SHA512

12046369de9bdca1c1d5ed3e70af3d8f60fc1ea8bab0ae419685bf8ba698e66745695aabec90226ba4f9a1fa7f473dcce75e970c663e930541c902727252ed6e
SSDEEP

384:9LJrLN9CSRZ8qFaGV5+Ii/0fTkWQ5ze+PfiXoK:938Ka++IiMfNgze2f4o

Score

7^/10

persistence upx

Malware Config

Targets

- Target
  
  28bd155dde01b5ce7ac0c2f0a5a14dab_JaffaCakes118
- Size
  
  17KB
- MD5
  
  28bd155dde01b5ce7ac0c2f0a5a14dab
- SHA1
  
  9387fa2258016c31b260059cd33781a972de28bf
- SHA256
  
  70acd2553a769e1583c87c3911b2adc0856983f8498e923b5a03fa963b16cc7b
- SHA512
  
  12046369de9bdca1c1d5ed3e70af3d8f60fc1ea8bab0ae419685bf8ba698e66745695aabec90226ba4f9a1fa7f473dcce75e970c663e930541c902727252ed6e
- SSDEEP
  
  384:9LJrLN9CSRZ8qFaGV5+Ii/0fTkWQ5ze+PfiXoK:938Ka++IiMfNgze2f4o
Score

7^/10

persistence upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2