d2a0e0efb7f2d04fa90c8926caabfc105bd3f472a99ffb0e0183f5bab1497c85 | Triage

Sharing

General

Target

48d0390360622aa4e3fefdaad564dbdd_JaffaCakes118
Size

139KB
Sample

240715-jckcpsxhpb
MD5

48d0390360622aa4e3fefdaad564dbdd
SHA1

63c2fcb0806fe59ee895fb7ce002556433ead86b
SHA256

d2a0e0efb7f2d04fa90c8926caabfc105bd3f472a99ffb0e0183f5bab1497c85
SHA512

62b9113f47700c7b60247aaa862439aeeec6742573b3fcbf2b45db617b57a157d5b85ee2903de40a6ef42e1bd5e2f75ed05096ce4c16e1218d57a78182c2f954
SSDEEP

3072:Ye8jMCjM/keGyMYaKW6Y307R116ouVecMdlT0/m:YftIPaN33GP16oBxt

Score

7^/10

persistence upx

Malware Config

Targets

- Target
  
  48d0390360622aa4e3fefdaad564dbdd_JaffaCakes118
- Size
  
  139KB
- MD5
  
  48d0390360622aa4e3fefdaad564dbdd
- SHA1
  
  63c2fcb0806fe59ee895fb7ce002556433ead86b
- SHA256
  
  d2a0e0efb7f2d04fa90c8926caabfc105bd3f472a99ffb0e0183f5bab1497c85
- SHA512
  
  62b9113f47700c7b60247aaa862439aeeec6742573b3fcbf2b45db617b57a157d5b85ee2903de40a6ef42e1bd5e2f75ed05096ce4c16e1218d57a78182c2f954
- SSDEEP
  
  3072:Ye8jMCjM/keGyMYaKW6Y307R116ouVecMdlT0/m:YftIPaN33GP16oBxt
Score

7^/10

persistence upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2