c1a0cfa1902652a7b6ee51cb771f27a59a2d7ababbbea684e2cb2b6e11064fe5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

846568e5bcad171a809dfe211e96ece6_JaffaCakes118
Size

3.3MB
Sample

240810-ce5yvsvcne
MD5

846568e5bcad171a809dfe211e96ece6
SHA1

e083e2cbd5ad9f25642a0be2301e4c419ecf5fbc
SHA256

c1a0cfa1902652a7b6ee51cb771f27a59a2d7ababbbea684e2cb2b6e11064fe5
SHA512

9e255e94ddb6260571dc495c180082cef45e8826f92acc8cd7e9a4350e5dd82d4535a525f110dd4172a07b33b26454306739f17082ff5a29fc7da8cb52032b7c
SSDEEP

49152:S2dmukqM7wtsRIPeJWEtfcqZzql1H6OelZMJcM3CvKmUV69fHcKs7ned89FTA9S:DcBquRIPK1JqAlZMqvKmUoc7n089F0s

Score

7^/10

discovery persistence upx

Malware Config

Targets

- Target
  
  846568e5bcad171a809dfe211e96ece6_JaffaCakes118
- Size
  
  3.3MB
- MD5
  
  846568e5bcad171a809dfe211e96ece6
- SHA1
  
  e083e2cbd5ad9f25642a0be2301e4c419ecf5fbc
- SHA256
  
  c1a0cfa1902652a7b6ee51cb771f27a59a2d7ababbbea684e2cb2b6e11064fe5
- SHA512
  
  9e255e94ddb6260571dc495c180082cef45e8826f92acc8cd7e9a4350e5dd82d4535a525f110dd4172a07b33b26454306739f17082ff5a29fc7da8cb52032b7c
- SSDEEP
  
  49152:S2dmukqM7wtsRIPeJWEtfcqZzql1H6OelZMJcM3CvKmUV69fHcKs7ned89FTA9S:DcBquRIPK1JqAlZMqvKmUoc7n089F0s
Score

7^/10

persistence upx discovery
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoverypersistenceupx