87b22ad797c6f14f43054dff95a5517bb2a7bfbd08aec17d89d0c259fde3017f | Triage

Sharing

General

Target

b98dcd9ed7f341135449e28cf791e996_JaffaCakes118
Size

224KB
Sample

240822-3v33bavajb
MD5

b98dcd9ed7f341135449e28cf791e996
SHA1

ffb13f9981d7440ce196269e3aa4160cf32e4652
SHA256

87b22ad797c6f14f43054dff95a5517bb2a7bfbd08aec17d89d0c259fde3017f
SHA512

ee5af10da07a469b19dcee3426ce9399dcd4c23376487791560d37e897a783276134b9565c90900e95cae10d7a713a64a32feced403ddd00486e233acf034cb4
SSDEEP

3072:+I52Ocrxs3Zxghq+P/RRlTmNtUxI9x2EMVaE3r9T3n1HcyGTuMiQKQ:+I6xsXSnZW+x22EMVlRjuAMnKQ

Score

10^/10

discovery evasion trojan upx

Malware Config

Targets

- Target
  
  b98dcd9ed7f341135449e28cf791e996_JaffaCakes118
- Size
  
  224KB
- MD5
  
  b98dcd9ed7f341135449e28cf791e996
- SHA1
  
  ffb13f9981d7440ce196269e3aa4160cf32e4652
- SHA256
  
  87b22ad797c6f14f43054dff95a5517bb2a7bfbd08aec17d89d0c259fde3017f
- SHA512
  
  ee5af10da07a469b19dcee3426ce9399dcd4c23376487791560d37e897a783276134b9565c90900e95cae10d7a713a64a32feced403ddd00486e233acf034cb4
- SSDEEP
  
  3072:+I52Ocrxs3Zxghq+P/RRlTmNtUxI9x2EMVaE3r9T3n1HcyGTuMiQKQ:+I6xsXSnZW+x22EMVlRjuAMnKQ
Score

10^/10

discovery evasion trojan upx
- UAC bypass
  evasion trojan
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Abuse Elevation Control Mechanism

Bypass User Account Control

Defense Evasion

Abuse Elevation Control Mechanism

Bypass User Account Control

Impair Defenses

Disable or Modify Tools

Modify Registry

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoveryevasiontrojanupx