ecd9c0f18bdb7423153059a5e2aef1bde37c6a84257fcb1363fadc0561d2032c | Triage

Sharing

General

Target

35d5ad6aa9973c663a0a784dece384a0_JaffaCakes118
Size

472KB
Sample

240710-wvlppssdln
MD5

35d5ad6aa9973c663a0a784dece384a0
SHA1

eb23379b62ed7f23469f4c87c4cf8f7228c2a152
SHA256

ecd9c0f18bdb7423153059a5e2aef1bde37c6a84257fcb1363fadc0561d2032c
SHA512

3701a76180869f87b3457743a43345f7f45fa2ce13a2130f825f0a4cf5cb8dbdfdbef33ad6d097c5e8cbfa5347dd77c843dfb7c717fd4b9e899f5fda80535412
SSDEEP

6144:qfgWYi3J0YBpnsnPlzmvEkoKuhtcNFaj+2h+HyVR68QHRimsrWBaU3KB8l2lBg:64i32wSN4oLhaLsFcHy3T8aY27g

Score

10^/10

evasion

Malware Config

Targets

- Target
  
  35d5ad6aa9973c663a0a784dece384a0_JaffaCakes118
- Size
  
  472KB
- MD5
  
  35d5ad6aa9973c663a0a784dece384a0
- SHA1
  
  eb23379b62ed7f23469f4c87c4cf8f7228c2a152
- SHA256
  
  ecd9c0f18bdb7423153059a5e2aef1bde37c6a84257fcb1363fadc0561d2032c
- SHA512
  
  3701a76180869f87b3457743a43345f7f45fa2ce13a2130f825f0a4cf5cb8dbdfdbef33ad6d097c5e8cbfa5347dd77c843dfb7c717fd4b9e899f5fda80535412
- SSDEEP
  
  6144:qfgWYi3J0YBpnsnPlzmvEkoKuhtcNFaj+2h+HyVR68QHRimsrWBaU3KB8l2lBg:64i32wSN4oLhaLsFcHy3T8aY27g
Score

10^/10

evasion
- Modifies firewall policy service
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Disable or Modify System Firewall

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2