cb5a1483f43a69d3f83d96318bace6dd6a09f983bc457a1911abc4d691f13e79 | Triage

Sharing

General

Target

2da0f3430d0b5eaab3379c740a374fd3_JaffaCakes118
Size

70KB
Sample

240708-ypvrjawdqq
MD5

2da0f3430d0b5eaab3379c740a374fd3
SHA1

d5e03120f0fe9f5e006e423da4ae8bc18d3888d8
SHA256

cb5a1483f43a69d3f83d96318bace6dd6a09f983bc457a1911abc4d691f13e79
SHA512

f57ca56740913bfbb1cb86bc4f6d111ea1a717d03f03b7cd5f7db210af946fb2ca903a03088e443207fa671b6d98a614a87f8d9ea44fc0a69ea375866f4aeec2
SSDEEP

1536:A+QWvZQSRqln5IUmDjoXVZHr3ZVWq95SKb9SImC:0WvZjRqln5I4Hr3ZVWy5SKpSImC

Score

10^/10

evasion

Malware Config

Targets

- Target
  
  2da0f3430d0b5eaab3379c740a374fd3_JaffaCakes118
- Size
  
  70KB
- MD5
  
  2da0f3430d0b5eaab3379c740a374fd3
- SHA1
  
  d5e03120f0fe9f5e006e423da4ae8bc18d3888d8
- SHA256
  
  cb5a1483f43a69d3f83d96318bace6dd6a09f983bc457a1911abc4d691f13e79
- SHA512
  
  f57ca56740913bfbb1cb86bc4f6d111ea1a717d03f03b7cd5f7db210af946fb2ca903a03088e443207fa671b6d98a614a87f8d9ea44fc0a69ea375866f4aeec2
- SSDEEP
  
  1536:A+QWvZQSRqln5IUmDjoXVZHr3ZVWq95SKb9SImC:0WvZjRqln5I4Hr3ZVWy5SKpSImC
Score

10^/10

evasion
- Modifies firewall policy service
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Disable or Modify System Firewall

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2