6460538c4351bbb0c451a0ba30cc88f9ecbd4512c76099bc1fdf00e56e9f3598 | Triage

Sharing

General

Target

bfabb1bcf13521d0ad32b01e30d180a7_JaffaCakes118
Size

80KB
Sample

240824-3mg5wawdne
MD5

bfabb1bcf13521d0ad32b01e30d180a7
SHA1

dc53fea98d6922646da9323dd9450f2f6f8f6921
SHA256

6460538c4351bbb0c451a0ba30cc88f9ecbd4512c76099bc1fdf00e56e9f3598
SHA512

06eb0c47502a60050d107eb1f5e5dec59e26ba18234b1f955935cd052dbe1a9bdb9e8165fcaa0370b2cd9bfbee9f7f98d29afebba7559b7ce8fa849644acb389
SSDEEP

1536:frWPWV4OvLjjL67Ue+UJE5ENnvMM/qJ5scT94iE:DWPWXDjj2oiJE52H/wX9bE

Score

7^/10

discovery persistence upx

Malware Config

Targets

- Target
  
  bfabb1bcf13521d0ad32b01e30d180a7_JaffaCakes118
- Size
  
  80KB
- MD5
  
  bfabb1bcf13521d0ad32b01e30d180a7
- SHA1
  
  dc53fea98d6922646da9323dd9450f2f6f8f6921
- SHA256
  
  6460538c4351bbb0c451a0ba30cc88f9ecbd4512c76099bc1fdf00e56e9f3598
- SHA512
  
  06eb0c47502a60050d107eb1f5e5dec59e26ba18234b1f955935cd052dbe1a9bdb9e8165fcaa0370b2cd9bfbee9f7f98d29afebba7559b7ce8fa849644acb389
- SSDEEP
  
  1536:frWPWV4OvLjjL67Ue+UJE5ENnvMM/qJ5scT94iE:DWPWXDjj2oiJE52H/wX9bE
Score

7^/10

discovery persistence upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoverypersistenceupx