83feb278d7b8ae51a415d2bfe293720547094cb4f924cb2d88e25ce74e050507 | Triage

Sharing

General

Target

7096a05c0bd38c5d521e1f85d69df695_JaffaCakes118
Size

399KB
Sample

240725-v8emwavanl
MD5

7096a05c0bd38c5d521e1f85d69df695
SHA1

65e8746a2572a74b4c67cb5298c48da729a6739b
SHA256

83feb278d7b8ae51a415d2bfe293720547094cb4f924cb2d88e25ce74e050507
SHA512

82244aa14f38b26ce7683894f3db8767cc6b8ba54b0c0fef9a36c8feab51116f5473f2fc3df94f384dcc21d7058ad9020e6fe9c2b142f5568099f3b8b21a70b8
SSDEEP

6144:OF/7mWcn8VAmNA3/sXkRIYXao3RsBP9Nnc6x9ekfCq6vAEHv/eN:o2x/arYXaZBFpprM9vGN

Score

7^/10

discovery persistence upx

Malware Config

Targets

- Target
  
  7096a05c0bd38c5d521e1f85d69df695_JaffaCakes118
- Size
  
  399KB
- MD5
  
  7096a05c0bd38c5d521e1f85d69df695
- SHA1
  
  65e8746a2572a74b4c67cb5298c48da729a6739b
- SHA256
  
  83feb278d7b8ae51a415d2bfe293720547094cb4f924cb2d88e25ce74e050507
- SHA512
  
  82244aa14f38b26ce7683894f3db8767cc6b8ba54b0c0fef9a36c8feab51116f5473f2fc3df94f384dcc21d7058ad9020e6fe9c2b142f5568099f3b8b21a70b8
- SSDEEP
  
  6144:OF/7mWcn8VAmNA3/sXkRIYXao3RsBP9Nnc6x9ekfCq6vAEHv/eN:o2x/arYXaZBFpprM9vGN
Score

7^/10

discovery persistence upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistenceupx

behavioral2

discoverypersistenceupx