73c1ab676c1516e116fc7466647b6ff18c3cb807ea05b281b193aee27267b9c9 | Triage

Sharing

General

Target

26bddbce441d1c18d034e02327f2be52_JaffaCakes118
Size

78KB
Sample

241008-2ygstawcjp
MD5

26bddbce441d1c18d034e02327f2be52
SHA1

0068a6edab24b9d452b16c4cf6aac68faaa25dc6
SHA256

73c1ab676c1516e116fc7466647b6ff18c3cb807ea05b281b193aee27267b9c9
SHA512

a64d7c388278d0e4798202222956d86e01e5ef8e698c022acd467225798ea9bc13e875369d0831988a9070429e58694efdc98649436b4be828aa960245c159aa
SSDEEP

1536:Etf4+fGHJglzvaBX4tMtPrfwJTyvwrhk6sP6Jo/0uRglbH:af4HHJg5vaBXCgEowlSyHuRqb

Score

10^/10

discovery evasion upx

Malware Config

Targets

- Target
  
  26bddbce441d1c18d034e02327f2be52_JaffaCakes118
- Size
  
  78KB
- MD5
  
  26bddbce441d1c18d034e02327f2be52
- SHA1
  
  0068a6edab24b9d452b16c4cf6aac68faaa25dc6
- SHA256
  
  73c1ab676c1516e116fc7466647b6ff18c3cb807ea05b281b193aee27267b9c9
- SHA512
  
  a64d7c388278d0e4798202222956d86e01e5ef8e698c022acd467225798ea9bc13e875369d0831988a9070429e58694efdc98649436b4be828aa960245c159aa
- SSDEEP
  
  1536:Etf4+fGHJglzvaBX4tMtPrfwJTyvwrhk6sP6Jo/0uRglbH:af4HHJg5vaBXCgEowlSyHuRqb
Score

10^/10

discovery upx evasion
- Modifies firewall policy service
  evasion
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Disable or Modify System Firewall

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoveryevasionupx