6ce1db245ec08070cf9982fc8817509c601207edf6c774d1ad3d03a2b754d2e5 | Triage

Sharing

General

Target

019cd39999368d47e5f742154fc32c40_JaffaCakes118
Size

173KB
Sample

240620-bgwmjavcmq
MD5

019cd39999368d47e5f742154fc32c40
SHA1

e83c16e2e873b5b4247736644249cde0ae3b34aa
SHA256

6ce1db245ec08070cf9982fc8817509c601207edf6c774d1ad3d03a2b754d2e5
SHA512

e76a1a69b7bc45a560809667a618d14ed206d48631561394b3eb623d4d138a4eaee387f6bd3bbcf8faa93b6174c61e489a31c29da9a1461666ce64034fec575a
SSDEEP

3072:6FpQQDO+41YmbQyRPkADIRnrxSuyJ1gjuYUEHjE2YKHMq8gus0/KQ3t1521L:6DQ1VY7yScIRouWgi0LDZm3t1521L

Score

10^/10

evasion

Malware Config

Targets

- Target
  
  019cd39999368d47e5f742154fc32c40_JaffaCakes118
- Size
  
  173KB
- MD5
  
  019cd39999368d47e5f742154fc32c40
- SHA1
  
  e83c16e2e873b5b4247736644249cde0ae3b34aa
- SHA256
  
  6ce1db245ec08070cf9982fc8817509c601207edf6c774d1ad3d03a2b754d2e5
- SHA512
  
  e76a1a69b7bc45a560809667a618d14ed206d48631561394b3eb623d4d138a4eaee387f6bd3bbcf8faa93b6174c61e489a31c29da9a1461666ce64034fec575a
- SSDEEP
  
  3072:6FpQQDO+41YmbQyRPkADIRnrxSuyJ1gjuYUEHjE2YKHMq8gus0/KQ3t1521L:6DQ1VY7yScIRouWgi0LDZm3t1521L
Score

10^/10

evasion
- Modifies firewall policy service
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Disable or Modify System Firewall

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2