300294d7c322e935addee87d69fd128db872c0ac9305e1b0554e6fdc785fe3ec | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4a2e15407475d83730c78285155f533d_JaffaCakes118
Size

2.9MB
Sample

240715-sfnnzayhmc
MD5

4a2e15407475d83730c78285155f533d
SHA1

6ab5ed518d3b19ab8259cc11b37dc90e54b6b286
SHA256

300294d7c322e935addee87d69fd128db872c0ac9305e1b0554e6fdc785fe3ec
SHA512

45d1286d7a61b1f7260f2fa61640a536478b4aae99f53f666d8349b208d9035dd206ccd03e3e7d150796c968f5924c48ca000e3d46d63b5a7e15bb4df41c1217
SSDEEP

49152:egtEqQccZ1C/Egm/gm/62hbbQPQwM46APOFAT+7dMxCHAfSfh2hMLBhRmvVk0uyb:Rb541CXm/62NbQPQX46AI6YuQAfSfh2l

Score

7^/10

persistence upx

Malware Config

Targets

- Target
  
  4a2e15407475d83730c78285155f533d_JaffaCakes118
- Size
  
  2.9MB
- MD5
  
  4a2e15407475d83730c78285155f533d
- SHA1
  
  6ab5ed518d3b19ab8259cc11b37dc90e54b6b286
- SHA256
  
  300294d7c322e935addee87d69fd128db872c0ac9305e1b0554e6fdc785fe3ec
- SHA512
  
  45d1286d7a61b1f7260f2fa61640a536478b4aae99f53f666d8349b208d9035dd206ccd03e3e7d150796c968f5924c48ca000e3d46d63b5a7e15bb4df41c1217
- SSDEEP
  
  49152:egtEqQccZ1C/Egm/gm/62hbbQPQwM46APOFAT+7dMxCHAfSfh2hMLBhRmvVk0uyb:Rb541CXm/62NbQPQX46AI6YuQAfSfh2l
Score

7^/10

persistence upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Scheduled Task

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Scheduled Task/Job

Scheduled Task

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Scheduled Task/Job

Scheduled Task

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2