f22b240562fa7b29df048f26a74b160636fc228e171171044fd31efd0cb8b5de | Triage

Sharing

General

Target

671ab890dfe84bcc231ced7533e8f2ed_JaffaCakes118
Size

57KB
Sample

240723-lxyrya1ajl
MD5

671ab890dfe84bcc231ced7533e8f2ed
SHA1

e826097c31594bc3667adca214753428b3fcab11
SHA256

f22b240562fa7b29df048f26a74b160636fc228e171171044fd31efd0cb8b5de
SHA512

a818fd508a6524efa2a3911475334a713f3a7c301b4557054aefebf60e7841eb985793249a7ba756190ac2c1430b11689569e3ce366fe9b61d8149a2ffa127b9
SSDEEP

1536:ZsI3lnT5xNHAFC7Mm4Pr1GEpN0soRaXmCBu:rThWCAm4ppN0soA

Score

7^/10

aspackv2 persistence

Malware Config

Targets

- Target
  
  671ab890dfe84bcc231ced7533e8f2ed_JaffaCakes118
- Size
  
  57KB
- MD5
  
  671ab890dfe84bcc231ced7533e8f2ed
- SHA1
  
  e826097c31594bc3667adca214753428b3fcab11
- SHA256
  
  f22b240562fa7b29df048f26a74b160636fc228e171171044fd31efd0cb8b5de
- SHA512
  
  a818fd508a6524efa2a3911475334a713f3a7c301b4557054aefebf60e7841eb985793249a7ba756190ac2c1430b11689569e3ce366fe9b61d8149a2ffa127b9
- SSDEEP
  
  1536:ZsI3lnT5xNHAFC7Mm4Pr1GEpN0soRaXmCBu:rThWCAm4ppN0soA
Score

7^/10

aspackv2 persistence
- ASPack v2.12-2.42
  Detects executables packed with ASPack v2.12-2.42
  aspackv2
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

aspackv2persistence

behavioral2

aspackv2persistence