8f5be6c63886d7ca78d8e3be205cbacc33305efc8302b4d1f50bad9dba962854 | Triage

Sharing

General

Target

8ac40f27bf7e8e6ca3f436a4b31dd124_JaffaCakes118
Size

3.0MB
Sample

240811-r34g9stfrj
MD5

8ac40f27bf7e8e6ca3f436a4b31dd124
SHA1

d1943297ef12a3ff8448d864772c5d77550cac03
SHA256

8f5be6c63886d7ca78d8e3be205cbacc33305efc8302b4d1f50bad9dba962854
SHA512

b2ca3e7207adf86de2f724cda8f2494ee1762d8a9de252f24dee21786f2eeca420a06da5de2109ff72f0c280cc95f52df6ac30e6f6b3b06f34cfa03df11aed17
SSDEEP

49152:w7sVVPrbhNGWZTGfCrRTxXgzvXxBMuxmOERCi6uYDh15OCblWOHtCMvYL+na3AXM:bVVPSERBkHnxmOeYD7RbVtCMwLxkm1rZ

Score

7^/10

aspackv2 discovery persistence

Malware Config

Targets

- Target
  
  8ac40f27bf7e8e6ca3f436a4b31dd124_JaffaCakes118
- Size
  
  3.0MB
- MD5
  
  8ac40f27bf7e8e6ca3f436a4b31dd124
- SHA1
  
  d1943297ef12a3ff8448d864772c5d77550cac03
- SHA256
  
  8f5be6c63886d7ca78d8e3be205cbacc33305efc8302b4d1f50bad9dba962854
- SHA512
  
  b2ca3e7207adf86de2f724cda8f2494ee1762d8a9de252f24dee21786f2eeca420a06da5de2109ff72f0c280cc95f52df6ac30e6f6b3b06f34cfa03df11aed17
- SSDEEP
  
  49152:w7sVVPrbhNGWZTGfCrRTxXgzvXxBMuxmOERCi6uYDh15OCblWOHtCMvYL+na3AXM:bVVPSERBkHnxmOeYD7RbVtCMwLxkm1rZ
Score

7^/10

aspackv2 discovery persistence
- ASPack v2.12-2.42
  Detects executables packed with ASPack v2.12-2.42
  aspackv2
- Executes dropped EXE
- Loads dropped DLL
- Adds Run key to start application
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

aspackv2discoverypersistence

behavioral2

aspackv2discoverypersistence