f9d1a155c23e9f51eb8b6045bddf284a9045fd7361732f7287df18c55e2f06db | Triage

Sharing

General

Target

2940b5a1d1f5d368850248e9ab555491_JaffaCakes118
Size

21KB
Sample

240706-xjle8ssepa
MD5

2940b5a1d1f5d368850248e9ab555491
SHA1

7ee4b0072cb2e767404c74eceee9a92d27e28199
SHA256

f9d1a155c23e9f51eb8b6045bddf284a9045fd7361732f7287df18c55e2f06db
SHA512

66aa1ebe5726c85b4a28c30472605cca111d8ee3ae6c8862e97c6e0ffd35b56a58305a2cdb73caa25e9858c840efb3d3138391c0b541c262166e74e8e70e8bdc
SSDEEP

384:KLWCpCJ6xhNN8S0gPW2KUCphaMTaR3ItDCuV9UAvdOh+/3o:wzZtN8SVKUCpJTaItO4U6di+/

Score

8^/10

evasion execution upx

Malware Config

Targets

- Target
  
  2940b5a1d1f5d368850248e9ab555491_JaffaCakes118
- Size
  
  21KB
- MD5
  
  2940b5a1d1f5d368850248e9ab555491
- SHA1
  
  7ee4b0072cb2e767404c74eceee9a92d27e28199
- SHA256
  
  f9d1a155c23e9f51eb8b6045bddf284a9045fd7361732f7287df18c55e2f06db
- SHA512
  
  66aa1ebe5726c85b4a28c30472605cca111d8ee3ae6c8862e97c6e0ffd35b56a58305a2cdb73caa25e9858c840efb3d3138391c0b541c262166e74e8e70e8bdc
- SSDEEP
  
  384:KLWCpCJ6xhNN8S0gPW2KUCphaMTaR3ItDCuV9UAvdOh+/3o:wzZtN8SVKUCpJTaItO4U6di+/
Score

8^/10

evasion execution upx
- Stops running service(s)
  evasion execution
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

System Services

Service Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Credential Access

Discovery

Peripheral Device Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Service Stop

Tasks

static1

behavioral1

evasionexecutionupx

behavioral2

evasionexecutionupx