21efdf2315ff217bb3d6eb0dc1ecc7ded9c2f55f69e662191adb83aac159d797 | Triage

Sharing

General

Target

d0086bdecfe5c853804496a1ad6dbdfe_JaffaCakes118
Size

137KB
Sample

240906-vmjppsxhlm
MD5

d0086bdecfe5c853804496a1ad6dbdfe
SHA1

3052a6be06fdc5126d57d5fb04ed0bd686d02397
SHA256

21efdf2315ff217bb3d6eb0dc1ecc7ded9c2f55f69e662191adb83aac159d797
SHA512

36fd9817d7249bfcd7b4d64d7cdfc7912e9589791e55ec40dfe87ec81b273953a84d71e5ca9d348dccf686226f421dedb075600f18ade211bbff30c3295e0c82
SSDEEP

1536:J4nrqyjrPvRu/BCjnqy8B/lCew3h0Yb9hzuMYaHqW5g1HSlJNprKR9lpJtHL53WD:ye8jMCjM/keGyMYaKW6IXrORRJtrlBR

Score

7^/10

discovery persistence upx

Malware Config

Targets

- Target
  
  d0086bdecfe5c853804496a1ad6dbdfe_JaffaCakes118
- Size
  
  137KB
- MD5
  
  d0086bdecfe5c853804496a1ad6dbdfe
- SHA1
  
  3052a6be06fdc5126d57d5fb04ed0bd686d02397
- SHA256
  
  21efdf2315ff217bb3d6eb0dc1ecc7ded9c2f55f69e662191adb83aac159d797
- SHA512
  
  36fd9817d7249bfcd7b4d64d7cdfc7912e9589791e55ec40dfe87ec81b273953a84d71e5ca9d348dccf686226f421dedb075600f18ade211bbff30c3295e0c82
- SSDEEP
  
  1536:J4nrqyjrPvRu/BCjnqy8B/lCew3h0Yb9hzuMYaHqW5g1HSlJNprKR9lpJtHL53WD:ye8jMCjM/keGyMYaKW6IXrORRJtrlBR
Score

7^/10

discovery persistence upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistenceupx

behavioral2

discoverypersistenceupx