55a0c35d513247ffefbc0e8cf80389aac5b64dccecb8b175ee76e562600e50d2 | Triage

Sharing

General

Target

ee43a09a6d0d63de9e4a234ae6268c7c_JaffaCakes118
Size

45KB
Sample

240920-x25a3atckc
MD5

ee43a09a6d0d63de9e4a234ae6268c7c
SHA1

b2b63c5d625b66029a9b7beaec781d2afaf59666
SHA256

55a0c35d513247ffefbc0e8cf80389aac5b64dccecb8b175ee76e562600e50d2
SHA512

64bdbe38c68baf30e629b15bcf8dbdb6ac1f602b67f25b30b5bd452e4f02fbbc3c45a274e1ed0ab09cea86da87f345e1cad9363d2435e1a48525389a486f314c
SSDEEP

768:9KFhaOh1VCZp2DgJeX0jUplz7VtH+vcsQ3pWzYIV0CJX4AechJWtlNiPagKu6vzl:9ih1esNz7nHEVYmJX4Vq8iJh

Score

10^/10

discovery evasion persistence trojan upx

Malware Config

Targets

- Target
  
  ee43a09a6d0d63de9e4a234ae6268c7c_JaffaCakes118
- Size
  
  45KB
- MD5
  
  ee43a09a6d0d63de9e4a234ae6268c7c
- SHA1
  
  b2b63c5d625b66029a9b7beaec781d2afaf59666
- SHA256
  
  55a0c35d513247ffefbc0e8cf80389aac5b64dccecb8b175ee76e562600e50d2
- SHA512
  
  64bdbe38c68baf30e629b15bcf8dbdb6ac1f602b67f25b30b5bd452e4f02fbbc3c45a274e1ed0ab09cea86da87f345e1cad9363d2435e1a48525389a486f314c
- SSDEEP
  
  768:9KFhaOh1VCZp2DgJeX0jUplz7VtH+vcsQ3pWzYIV0CJX4AechJWtlNiPagKu6vzl:9ih1esNz7nHEVYmJX4Vq8iJh
Score

10^/10

discovery evasion persistence trojan upx
- UAC bypass
  evasion trojan
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
- Checks whether UAC is enabled
  evasion trojan
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Abuse Elevation Control Mechanism

Bypass User Account Control

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Abuse Elevation Control Mechanism

Bypass User Account Control

Impair Defenses

Disable or Modify Tools

Modify Registry

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoveryevasionpersistencetrojanupx