8bbb560c9f9db0d11a090180ad04b30ca4aa07108d8284d59ae3c39d091a61ed | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4a9c6a14ce99a17219edf560a2f94f20_JaffaCakes118
Size

34KB
Sample

240715-vnr3gatbrh
MD5

4a9c6a14ce99a17219edf560a2f94f20
SHA1

a5b53d5a138fa2e520c1094d60b02ea6e51e7861
SHA256

8bbb560c9f9db0d11a090180ad04b30ca4aa07108d8284d59ae3c39d091a61ed
SHA512

991c4156547c4b7d020f82e14a818c019f45dab4f786edf9b26a0ed01b900220d5796f8b4c5939001a23cde5c53070c72199203c23b301cd2364d283ae324a32
SSDEEP

768:6gsyD43/g9WXl6LEJxaCgxoCyVhrmPDGTRT1JHPkCS:6giv6ul6s6uVhrhRvk3

Score

7^/10

persistence upx

Malware Config

Targets

- Target
  
  4a9c6a14ce99a17219edf560a2f94f20_JaffaCakes118
- Size
  
  34KB
- MD5
  
  4a9c6a14ce99a17219edf560a2f94f20
- SHA1
  
  a5b53d5a138fa2e520c1094d60b02ea6e51e7861
- SHA256
  
  8bbb560c9f9db0d11a090180ad04b30ca4aa07108d8284d59ae3c39d091a61ed
- SHA512
  
  991c4156547c4b7d020f82e14a818c019f45dab4f786edf9b26a0ed01b900220d5796f8b4c5939001a23cde5c53070c72199203c23b301cd2364d283ae324a32
- SSDEEP
  
  768:6gsyD43/g9WXl6LEJxaCgxoCyVhrmPDGTRT1JHPkCS:6giv6ul6s6uVhrhRvk3
Score

7^/10

persistence upx
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2