497ae9f359cf4bb0509c4299918640294d8035fce9b4ca3e14c1a167343b9d00 | Triage

Submit
Reports

Overview

overview

7

Static

static

7

973b180bb8...18.exe

windows7-x64

7

973b180bb8...18.exe

windows10-2004-x64

7

Sharing

General

Target

973b180bb84820f28abf0088165f1248_JaffaCakes118
Size

28KB
Sample

240814-xb62zaserp
MD5

973b180bb84820f28abf0088165f1248
SHA1

814d45163ee27f25f487314dfe0891ca6e580663
SHA256

497ae9f359cf4bb0509c4299918640294d8035fce9b4ca3e14c1a167343b9d00
SHA512

dd5e7417a3f9c78b8a0f89492af6a4f2853cd29c453838f78a7dd2c31b3f520169c99e516f0a054373fde3146ad7130649a40999b0f25c5b63b2858c28021963
SSDEEP

384:1vxBbK26lj5Id8SpHx9jLhsznnVxA1WmP5w7GGCJlqqwMyNm:Dv8IRRdsxq1DjJcqfV

Score

7^/10

discovery persistence upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

973b180bb84820f28abf0088165f1248_JaffaCakes118.exe

Resource

win7-20240704-en

discovery persistence upx

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

973b180bb84820f28abf0088165f1248_JaffaCakes118.exe

Resource

win10v2004-20240802-en

discovery persistence upx

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  973b180bb84820f28abf0088165f1248_JaffaCakes118
- Size
  
  28KB
- MD5
  
  973b180bb84820f28abf0088165f1248
- SHA1
  
  814d45163ee27f25f487314dfe0891ca6e580663
- SHA256
  
  497ae9f359cf4bb0509c4299918640294d8035fce9b4ca3e14c1a167343b9d00
- SHA512
  
  dd5e7417a3f9c78b8a0f89492af6a4f2853cd29c453838f78a7dd2c31b3f520169c99e516f0a054373fde3146ad7130649a40999b0f25c5b63b2858c28021963
- SSDEEP
  
  384:1vxBbK26lj5Id8SpHx9jLhsznnVxA1WmP5w7GGCJlqqwMyNm:Dv8IRRdsxq1DjJcqfV
Score

7^/10

discovery persistence upx
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistenceupx

behavioral2

discoverypersistenceupx

© 2018-2025

Terms | Privacy