a0254f754c5225e5f7cd66ff87dd7a34e1ba8cd65142fc899cdd3ec2f399b165 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cee81b35667d9c8b1a07793274ee2ee0_JaffaCakes118
Size

137KB
Sample

240906-he8yeasanb
MD5

cee81b35667d9c8b1a07793274ee2ee0
SHA1

d01f37313797e122b2ca211ff0481b102959a55d
SHA256

a0254f754c5225e5f7cd66ff87dd7a34e1ba8cd65142fc899cdd3ec2f399b165
SHA512

ed6e4d9dbc69d28373d881c0c4ec4b1c927511198b2587578e1a3e8c992c9a07767f1e9c4d7b5513af893feedb9e7aaabcb76066ae91e03bfd44ff0f1893cfe9
SSDEEP

1536:J4nrqyjrPvRu/BCjnqy8B/lCew3h0Yb9hzuMYaHqW5g1HSlJNprKR9lpJtHL53Wo:ye8jMCjM/keGyMYaKW6IXrORRJtrlBR

Score

7^/10

discovery persistence upx

Malware Config

Targets

- Target
  
  cee81b35667d9c8b1a07793274ee2ee0_JaffaCakes118
- Size
  
  137KB
- MD5
  
  cee81b35667d9c8b1a07793274ee2ee0
- SHA1
  
  d01f37313797e122b2ca211ff0481b102959a55d
- SHA256
  
  a0254f754c5225e5f7cd66ff87dd7a34e1ba8cd65142fc899cdd3ec2f399b165
- SHA512
  
  ed6e4d9dbc69d28373d881c0c4ec4b1c927511198b2587578e1a3e8c992c9a07767f1e9c4d7b5513af893feedb9e7aaabcb76066ae91e03bfd44ff0f1893cfe9
- SSDEEP
  
  1536:J4nrqyjrPvRu/BCjnqy8B/lCew3h0Yb9hzuMYaHqW5g1HSlJNprKR9lpJtHL53Wo:ye8jMCjM/keGyMYaKW6IXrORRJtrlBR
Score

7^/10

discovery persistence upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistenceupx

behavioral2

discoverypersistenceupx