d9f0d019be9204ac0e88d4a8c998fccf331408193341fd83ed5b353f3b970ca9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2e9cb359e05ea4031f873e0f56578397_JaffaCakes118
Size

22KB
Sample

240709-cevg5ashkh
MD5

2e9cb359e05ea4031f873e0f56578397
SHA1

472271af5dcd53c1f6fca0f5f7df968b162e97cb
SHA256

d9f0d019be9204ac0e88d4a8c998fccf331408193341fd83ed5b353f3b970ca9
SHA512

c91aea84f616e77fc97fc6e42244f84b623050133377915d49a8d4e45a929d1d8b9bf1ed34cc261603b88cd63aecf771993d134e0fcd7fbefb600a97cfe48891
SSDEEP

384:jbCEXMMADQIrUeNFwx9E5xtT6fkCMst8AdxIiv4dK8y8KG8szTO4Am7UnwtzwGtx:P1NAUsbxtT6sFst/3IrdlLUwhMnbcuyi

Score

7^/10

persistence upx

Malware Config

Targets

- Target
  
  2e9cb359e05ea4031f873e0f56578397_JaffaCakes118
- Size
  
  22KB
- MD5
  
  2e9cb359e05ea4031f873e0f56578397
- SHA1
  
  472271af5dcd53c1f6fca0f5f7df968b162e97cb
- SHA256
  
  d9f0d019be9204ac0e88d4a8c998fccf331408193341fd83ed5b353f3b970ca9
- SHA512
  
  c91aea84f616e77fc97fc6e42244f84b623050133377915d49a8d4e45a929d1d8b9bf1ed34cc261603b88cd63aecf771993d134e0fcd7fbefb600a97cfe48891
- SSDEEP
  
  384:jbCEXMMADQIrUeNFwx9E5xtT6fkCMst8AdxIiv4dK8y8KG8szTO4Am7UnwtzwGtx:P1NAUsbxtT6sFst/3IrdlLUwhMnbcuyi
Score

7^/10

persistence upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2