f5005936446b0f3e0aabee8af60731386cefe533e84aaaea058a46146863e456 | Triage

Sharing

General

Target

32c399fe4e7a0aec1d4edab5bc2de371_JaffaCakes118
Size

113KB
Sample

240710-brfdaszbre
MD5

32c399fe4e7a0aec1d4edab5bc2de371
SHA1

e2e2f9403bc8f248a7bb6e9583f7ff65b6ab2a83
SHA256

f5005936446b0f3e0aabee8af60731386cefe533e84aaaea058a46146863e456
SHA512

535f66df9498a986007911fadf3aa2d1988bdbadd28604f8af91c19c554de920fb8daf8dd220233c1702b8d38da5ef49afb93cc324559e06b4deaaade14f8c24
SSDEEP

3072:5Q6ru3IwA7GIqHv7yqn50WmZJgEYq0bsImmxKFU:zru4wA7GIqmq5TojmQHmxKK

Score

7^/10

aspackv2 persistence

Malware Config

Targets

- Target
  
  32c399fe4e7a0aec1d4edab5bc2de371_JaffaCakes118
- Size
  
  113KB
- MD5
  
  32c399fe4e7a0aec1d4edab5bc2de371
- SHA1
  
  e2e2f9403bc8f248a7bb6e9583f7ff65b6ab2a83
- SHA256
  
  f5005936446b0f3e0aabee8af60731386cefe533e84aaaea058a46146863e456
- SHA512
  
  535f66df9498a986007911fadf3aa2d1988bdbadd28604f8af91c19c554de920fb8daf8dd220233c1702b8d38da5ef49afb93cc324559e06b4deaaade14f8c24
- SSDEEP
  
  3072:5Q6ru3IwA7GIqHv7yqn50WmZJgEYq0bsImmxKFU:zru4wA7GIqmq5TojmQHmxKK
Score

7^/10

aspackv2 persistence
- ASPack v2.12-2.42
  Detects executables packed with ASPack v2.12-2.42
  aspackv2
- Loads dropped DLL
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

aspackv2persistence