0be4dff87de31f5ae5afeaaa60ff2da182dfffbfc0299274621febe1eacbc551 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

83c20c1da0b023df569b2ca8e39cf962_JaffaCakes118
Size

54KB
Sample

240809-16s1dasarr
MD5

83c20c1da0b023df569b2ca8e39cf962
SHA1

19838f944853793d6b63cb0b5a3ed5a22c3b36f2
SHA256

0be4dff87de31f5ae5afeaaa60ff2da182dfffbfc0299274621febe1eacbc551
SHA512

3928af8d154dbd2dd02491686f5b8873eb8b2d1e095a1e3850e26719e184006e1d9efdf9f8d26c7491539b7a7e31e33809d2462ad6d598947430b8c0e5d08f4d
SSDEEP

1536:H7hT2PxrretcOQLw05nouy88ZRD5q4OZZZLlMZibz:HR2PVKtQZout4RDP8rbz

Score

7^/10

discovery persistence upx

Malware Config

Targets

- Target
  
  83c20c1da0b023df569b2ca8e39cf962_JaffaCakes118
- Size
  
  54KB
- MD5
  
  83c20c1da0b023df569b2ca8e39cf962
- SHA1
  
  19838f944853793d6b63cb0b5a3ed5a22c3b36f2
- SHA256
  
  0be4dff87de31f5ae5afeaaa60ff2da182dfffbfc0299274621febe1eacbc551
- SHA512
  
  3928af8d154dbd2dd02491686f5b8873eb8b2d1e095a1e3850e26719e184006e1d9efdf9f8d26c7491539b7a7e31e33809d2462ad6d598947430b8c0e5d08f4d
- SSDEEP
  
  1536:H7hT2PxrretcOQLw05nouy88ZRD5q4OZZZLlMZibz:HR2PVKtQZout4RDP8rbz
Score

7^/10

discovery persistence upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistenceupx

behavioral2

discoverypersistenceupx