9dfbf7cc1d97fe69096856cb692369de6611a0430a184d770fd3ec48ccbce6f1 | Triage

Sharing

General

Target

8b01a916e9be2d6ad2dd3651ab7e6e19_JaffaCakes118
Size

141KB
Sample

240811-tf3zbswflj
MD5

8b01a916e9be2d6ad2dd3651ab7e6e19
SHA1

7a73944a28df9966590c0624f907b6110d53d945
SHA256

9dfbf7cc1d97fe69096856cb692369de6611a0430a184d770fd3ec48ccbce6f1
SHA512

9b16ec3a14222ebefecd8ba1bdf4bfa27551867ab7cf2dc8bbc06572cd24b76ca18e9d1a24951b54f26734dcba7fd2ab8f5c6f0cfff44ed4d82cd67f26068134
SSDEEP

3072:O9z7LfDjLSNME8tQdlKG0FDcnX04BAvceixYcaP:O9z3rjLzt8KG0FoX0Dcep

Score

7^/10

aspackv2 discovery persistence

Malware Config

Targets

- Target
  
  8b01a916e9be2d6ad2dd3651ab7e6e19_JaffaCakes118
- Size
  
  141KB
- MD5
  
  8b01a916e9be2d6ad2dd3651ab7e6e19
- SHA1
  
  7a73944a28df9966590c0624f907b6110d53d945
- SHA256
  
  9dfbf7cc1d97fe69096856cb692369de6611a0430a184d770fd3ec48ccbce6f1
- SHA512
  
  9b16ec3a14222ebefecd8ba1bdf4bfa27551867ab7cf2dc8bbc06572cd24b76ca18e9d1a24951b54f26734dcba7fd2ab8f5c6f0cfff44ed4d82cd67f26068134
- SSDEEP
  
  3072:O9z7LfDjLSNME8tQdlKG0FDcnX04BAvceixYcaP:O9z3rjLzt8KG0FoX0Dcep
Score

7^/10

aspackv2 discovery persistence
- ASPack v2.12-2.42
  Detects executables packed with ASPack v2.12-2.42
  aspackv2
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

aspackv2discoverypersistence

behavioral2

aspackv2discoverypersistence