ac011c8c965cd30b62e76ac7a126c0b5dce1092b9a6836c2fc1295df08a2b7fe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bee45f8c107ff034ab9809544ff98683_JaffaCakes118
Size

48KB
Sample

240824-sw2wjawgnd
MD5

bee45f8c107ff034ab9809544ff98683
SHA1

e2419c2e1889c474e285d41a9fe49732596fb9e9
SHA256

ac011c8c965cd30b62e76ac7a126c0b5dce1092b9a6836c2fc1295df08a2b7fe
SHA512

2cf32a53232203fd7ddb40e019d23e2be8af6fa84f8ffc5745d1a512681d62277a34cdc53a68865b692f0bca109dede95079dd1204f4aef4964a86c87fd0d43c
SSDEEP

768:zVhHmMth6A4Uq6y+KkIP8c5+L/xa7JABVS06lyuoNDCktKXjlyoqpkXf:zzHmMthuUq9+Kk48C+QJAuoNgXjlyo6k

Score

10^/10

discovery evasion persistence trojan upx

Malware Config

Targets

- Target
  
  bee45f8c107ff034ab9809544ff98683_JaffaCakes118
- Size
  
  48KB
- MD5
  
  bee45f8c107ff034ab9809544ff98683
- SHA1
  
  e2419c2e1889c474e285d41a9fe49732596fb9e9
- SHA256
  
  ac011c8c965cd30b62e76ac7a126c0b5dce1092b9a6836c2fc1295df08a2b7fe
- SHA512
  
  2cf32a53232203fd7ddb40e019d23e2be8af6fa84f8ffc5745d1a512681d62277a34cdc53a68865b692f0bca109dede95079dd1204f4aef4964a86c87fd0d43c
- SSDEEP
  
  768:zVhHmMth6A4Uq6y+KkIP8c5+L/xa7JABVS06lyuoNDCktKXjlyoqpkXf:zzHmMthuUq9+Kk48C+QJAuoNgXjlyo6k
Score

10^/10

discovery evasion persistence trojan upx
- UAC bypass
  evasion trojan
- Deletes itself
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Abuse Elevation Control Mechanism

Bypass User Account Control

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Abuse Elevation Control Mechanism

Bypass User Account Control

Impair Defenses

Disable or Modify Tools

Modify Registry

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasionpersistencetrojanupx

behavioral2

discoveryevasionpersistencetrojanupx