ce226b56a0af324291d454bcc693a585e6367e2670cb68da5a221a8c718083e1 | Triage

Sharing

General

Target

ea7e8ba363dfe29271a01e79ff3dc467_JaffaCakes118
Size

6KB
Sample

240919-dxysyayekp
MD5

ea7e8ba363dfe29271a01e79ff3dc467
SHA1

5a80ad009d387a51ea351f9dc723fa77c0b8a387
SHA256

ce226b56a0af324291d454bcc693a585e6367e2670cb68da5a221a8c718083e1
SHA512

5d6831cfd613f16727a38ac5210d8d7aaa2e5222d84de70a3a75e07003e60cdf605066a3c995e01d3582cab4c8870e0d824d410f4d0f7ff3232ab2b605107e04
SSDEEP

192:i+S/r7eSaJrQQXoyaVhLfAVYW1RFts8+V:i+S/X1afJ8jYtQV

Score

8^/10

discovery persistence upx

Malware Config

Targets

- Target
  
  ea7e8ba363dfe29271a01e79ff3dc467_JaffaCakes118
- Size
  
  6KB
- MD5
  
  ea7e8ba363dfe29271a01e79ff3dc467
- SHA1
  
  5a80ad009d387a51ea351f9dc723fa77c0b8a387
- SHA256
  
  ce226b56a0af324291d454bcc693a585e6367e2670cb68da5a221a8c718083e1
- SHA512
  
  5d6831cfd613f16727a38ac5210d8d7aaa2e5222d84de70a3a75e07003e60cdf605066a3c995e01d3582cab4c8870e0d824d410f4d0f7ff3232ab2b605107e04
- SSDEEP
  
  192:i+S/r7eSaJrQQXoyaVhLfAVYW1RFts8+V:i+S/X1afJ8jYtQV
Score

8^/10

discovery upx persistence
- Adds policy Run key to start application
  persistence
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoverypersistenceupx