b448cd076ee73976834e68e41e64d3cb0ca6ed0388c9fd999650a24c9585e5ff | Triage

Sharing

General

Target

018d8aaa548b525479675aa6c1b67fff_JaffaCakes118
Size

137KB
Sample

240930-qnpj5axeqk
MD5

018d8aaa548b525479675aa6c1b67fff
SHA1

288dcfa2432f8d5ef0f1a05261c20795b3fec81a
SHA256

b448cd076ee73976834e68e41e64d3cb0ca6ed0388c9fd999650a24c9585e5ff
SHA512

3a0d585e361264ba34b8e911046bf392e2cec8be8aee69eb25984f23379b191d571d0498cbcef236b8e553916706f20ea421d61d204cd11f9b2dbdfee36919a3
SSDEEP

1536:J4nrqyjrPvRu/BCjnqy8B/lCew3h0Yb9hzuMYaHqW5g1HSlJNprKR9lpJtHL53Wa:ye8jMCjM/keGyMYaKW6IXrORRJtrlBR

Score

6^/10

discovery persistence upx

Malware Config

Targets

- Target
  
  018d8aaa548b525479675aa6c1b67fff_JaffaCakes118
- Size
  
  137KB
- MD5
  
  018d8aaa548b525479675aa6c1b67fff
- SHA1
  
  288dcfa2432f8d5ef0f1a05261c20795b3fec81a
- SHA256
  
  b448cd076ee73976834e68e41e64d3cb0ca6ed0388c9fd999650a24c9585e5ff
- SHA512
  
  3a0d585e361264ba34b8e911046bf392e2cec8be8aee69eb25984f23379b191d571d0498cbcef236b8e553916706f20ea421d61d204cd11f9b2dbdfee36919a3
- SSDEEP
  
  1536:J4nrqyjrPvRu/BCjnqy8B/lCew3h0Yb9hzuMYaHqW5g1HSlJNprKR9lpJtHL53Wa:ye8jMCjM/keGyMYaKW6IXrORRJtrlBR
Score

6^/10

discovery persistence upx
- Adds Run key to start application
  persistence
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistenceupx

behavioral2

discoverypersistenceupx