7399fe2e596532c2a41b681fd210768de055d80b0e2bdb58e781b8f393c814ed | Triage

Sharing

General

Target

4032160dabac7b2d23fc2b7aea2a76b1_JaffaCakes118
Size

137KB
Sample

241013-q3dfeathjp
MD5

4032160dabac7b2d23fc2b7aea2a76b1
SHA1

229800c1cf7df65419a63f91f20950b8bc059c06
SHA256

7399fe2e596532c2a41b681fd210768de055d80b0e2bdb58e781b8f393c814ed
SHA512

d897f25a986f8c2936474a434d62f3be554bb9f214eb1666ce9f3885d8dd4d9459c8e9ec1f954fcfad3a400503679adfc5b07491c367a43925a9abd4eae4d783
SSDEEP

1536:u/nrqyjrPvRu/BCjnqy8B/lCew3h0Yb9hzuMYaHqW5g1HklJNprKR9lpJtHL53WT:Ye8jMCjM/keGyMYaKW6WXrORRJtrlq

Score

6^/10

discovery persistence upx

Malware Config

Targets

- Target
  
  4032160dabac7b2d23fc2b7aea2a76b1_JaffaCakes118
- Size
  
  137KB
- MD5
  
  4032160dabac7b2d23fc2b7aea2a76b1
- SHA1
  
  229800c1cf7df65419a63f91f20950b8bc059c06
- SHA256
  
  7399fe2e596532c2a41b681fd210768de055d80b0e2bdb58e781b8f393c814ed
- SHA512
  
  d897f25a986f8c2936474a434d62f3be554bb9f214eb1666ce9f3885d8dd4d9459c8e9ec1f954fcfad3a400503679adfc5b07491c367a43925a9abd4eae4d783
- SSDEEP
  
  1536:u/nrqyjrPvRu/BCjnqy8B/lCew3h0Yb9hzuMYaHqW5g1HklJNprKR9lpJtHL53WT:Ye8jMCjM/keGyMYaKW6WXrORRJtrlq
Score

6^/10

discovery persistence upx
- Adds Run key to start application
  persistence
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistenceupx

behavioral2

discoverypersistenceupx