e547d236afd9809e5e7a1d71138c1b17b76fe2ffac5f920abddda4105a2201f4 | Triage

Submit
Reports

Overview

overview

6

Static

static

5

be7151bc63...18.exe

windows7-x64

6

be7151bc63...18.exe

windows10-2004-x64

6

Sharing

General

Target

be7151bc634111c23085f737f9783e0f_JaffaCakes118
Size

842KB
Sample

241203-vzrwva1ldj
MD5

be7151bc634111c23085f737f9783e0f
SHA1

5848539c23bcc5e0db4603642bc46f296b044d15
SHA256

e547d236afd9809e5e7a1d71138c1b17b76fe2ffac5f920abddda4105a2201f4
SHA512

c6c5a980ed2fdade13f2b5e855d98bda30f66d3cd51854ee760eda21265b40d744fa08b28fc15be6c6c4416265c9195877ff8b8b0d145012bab005e047edf7b9
SSDEEP

12288:B07ofztkLZLS0VmYrp5pG+ngACkDDZMoGW4eYKpovBHSv27BgYEwToqD2CV:Bmo7tkQ0Ycb4FAC2DZL7YKCBA29Tcqj

Score

6^/10

defense_evasion discovery upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

be7151bc634111c23085f737f9783e0f_JaffaCakes118.exe

Resource

win7-20240903-en

defense_evasion discovery upx

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

be7151bc634111c23085f737f9783e0f_JaffaCakes118.exe

Resource

win10v2004-20241007-en

defense_evasion discovery upx

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  be7151bc634111c23085f737f9783e0f_JaffaCakes118
- Size
  
  842KB
- MD5
  
  be7151bc634111c23085f737f9783e0f
- SHA1
  
  5848539c23bcc5e0db4603642bc46f296b044d15
- SHA256
  
  e547d236afd9809e5e7a1d71138c1b17b76fe2ffac5f920abddda4105a2201f4
- SHA512
  
  c6c5a980ed2fdade13f2b5e855d98bda30f66d3cd51854ee760eda21265b40d744fa08b28fc15be6c6c4416265c9195877ff8b8b0d145012bab005e047edf7b9
- SSDEEP
  
  12288:B07ofztkLZLS0VmYrp5pG+ngACkDDZMoGW4eYKpovBHSv27BgYEwToqD2CV:Bmo7tkQ0Ycb4FAC2DZL7YKCBA29Tcqj
Score

6^/10

defense_evasion discovery upx
- Indicator Removal: File Deletion
  Adversaries may delete files left behind by the actions of their intrusion activity.
  defense_evasion
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Indicator Removal

File Deletion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasiondiscoveryupx

behavioral2

defense_evasiondiscoveryupx

© 2018-2024

Terms | Privacy