c85cef9bc63c7fd0ef1284bac23214cd39f341d45bec71c6da95d3d5d7251aea | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fea784e5e82fe7994394badb20ba1d96_JaffaCakes118
Size

139KB
Sample

240929-q25hhawgqk
MD5

fea784e5e82fe7994394badb20ba1d96
SHA1

74d3a387de08904e5dd0bd23cdd803853dbb96ad
SHA256

c85cef9bc63c7fd0ef1284bac23214cd39f341d45bec71c6da95d3d5d7251aea
SHA512

adef7ff8bf52506567e07e47d1a68c7b6ef1ac6caa0ff1d3d318888fc967bf0b1d554721d2bfa3162a2bcfbd0e726d3364d2fe8b0133659b437943fa8accea13
SSDEEP

3072:Ye8jMCjM/keGyMYaKW6Y307R116ouVecMdlT0/m:YftIPaN33GP16oBxt

Score

6^/10

discovery persistence upx

Malware Config

Targets

- Target
  
  fea784e5e82fe7994394badb20ba1d96_JaffaCakes118
- Size
  
  139KB
- MD5
  
  fea784e5e82fe7994394badb20ba1d96
- SHA1
  
  74d3a387de08904e5dd0bd23cdd803853dbb96ad
- SHA256
  
  c85cef9bc63c7fd0ef1284bac23214cd39f341d45bec71c6da95d3d5d7251aea
- SHA512
  
  adef7ff8bf52506567e07e47d1a68c7b6ef1ac6caa0ff1d3d318888fc967bf0b1d554721d2bfa3162a2bcfbd0e726d3364d2fe8b0133659b437943fa8accea13
- SSDEEP
  
  3072:Ye8jMCjM/keGyMYaKW6Y307R116ouVecMdlT0/m:YftIPaN33GP16oBxt
Score

6^/10

discovery persistence upx
- Adds Run key to start application
  persistence
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistenceupx

behavioral2

discoverypersistenceupx