44b1f2a554cdec1f71a601476bf306a3f07acc8b534ff59db0b158e3baa4a432 | Triage

Sharing

General

Target

eaa78369a09277b7f9996647a7d144f5_JaffaCakes118
Size

139KB
Sample

240919-fyqvtssend
MD5

eaa78369a09277b7f9996647a7d144f5
SHA1

c2eaac1c937190d858272bd0f422857866fad61c
SHA256

44b1f2a554cdec1f71a601476bf306a3f07acc8b534ff59db0b158e3baa4a432
SHA512

7e44a15b0b9d958beb4f5d9ef8a11defb336cd7c9b6d54814e89d7f1611b99f2575b046f52fdfc37b504e6053ef2b5b53c08b660d68185267a87c58f30d0953f
SSDEEP

3072:Ye8jMCjM/keGyMYaKW6Y307R116ouVecMdlT0/m:YftIPaN33GP16oBxt

Score

7^/10

discovery persistence upx

Malware Config

Targets

- Target
  
  eaa78369a09277b7f9996647a7d144f5_JaffaCakes118
- Size
  
  139KB
- MD5
  
  eaa78369a09277b7f9996647a7d144f5
- SHA1
  
  c2eaac1c937190d858272bd0f422857866fad61c
- SHA256
  
  44b1f2a554cdec1f71a601476bf306a3f07acc8b534ff59db0b158e3baa4a432
- SHA512
  
  7e44a15b0b9d958beb4f5d9ef8a11defb336cd7c9b6d54814e89d7f1611b99f2575b046f52fdfc37b504e6053ef2b5b53c08b660d68185267a87c58f30d0953f
- SSDEEP
  
  3072:Ye8jMCjM/keGyMYaKW6Y307R116ouVecMdlT0/m:YftIPaN33GP16oBxt
Score

7^/10

discovery persistence upx
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistenceupx

behavioral2

discoverypersistenceupx