2e55953f081dcca78557a5b8be0a7015b828b8ad013f3470ee4e432c7897f340 | Triage

Sharing

General

Target

26b2b049141a1121afd944b3b33681c2_JaffaCakes118
Size

68KB
Sample

240329-trnzjscg76
MD5

26b2b049141a1121afd944b3b33681c2
SHA1

32df277749336581899f630bf11d36a70d68a592
SHA256

2e55953f081dcca78557a5b8be0a7015b828b8ad013f3470ee4e432c7897f340
SHA512

c52433eed1dbf78955c9358fdb4bf97dd3cd9a50eccb17d49426c8fda76805da70884bf662a274d69aef326af7714602c4234b388790fa1df65f230802500f2b
SSDEEP

1536:0txwjjK7lp27GjV3P1YVl3oyzrmg/t01fUS95vSVuE:kqjm+l4yzr9/t09US7SL

Score

10^/10

evasion

Malware Config

Targets

- Target
  
  26b2b049141a1121afd944b3b33681c2_JaffaCakes118
- Size
  
  68KB
- MD5
  
  26b2b049141a1121afd944b3b33681c2
- SHA1
  
  32df277749336581899f630bf11d36a70d68a592
- SHA256
  
  2e55953f081dcca78557a5b8be0a7015b828b8ad013f3470ee4e432c7897f340
- SHA512
  
  c52433eed1dbf78955c9358fdb4bf97dd3cd9a50eccb17d49426c8fda76805da70884bf662a274d69aef326af7714602c4234b388790fa1df65f230802500f2b
- SSDEEP
  
  1536:0txwjjK7lp27GjV3P1YVl3oyzrmg/t01fUS95vSVuE:kqjm+l4yzr9/t09US7SL
Score

10^/10

evasion
- Modifies firewall policy service
  evasion
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2