81f9089445ff7a6d47f8547cbef99cc08231aa84c6bd7bfd676b2277699f9af7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

42d557fcdd3f45208914524993aa4bcf_JaffaCakes118
Size

50KB
Sample

240713-w3m8hasbnk
MD5

42d557fcdd3f45208914524993aa4bcf
SHA1

a5a8abeed11c972ef1476f3ff6054b22f871066e
SHA256

81f9089445ff7a6d47f8547cbef99cc08231aa84c6bd7bfd676b2277699f9af7
SHA512

e3d12f42b76d5bb2f2542b063878ec57c76949ee6eeb95b0f22ca7c5bd07aa73cbdddacf90766769562fac695fdd798d2ee22cb5c7e1ba0857db66101e8362be
SSDEEP

768:yiT5cxpyYqCNsiKudQhK+EuQxMMTdgNf6VeY/BbzLOAoQFXmQMD5zNF:yi4pyY1NsiKudqOCCdafNYdzLHvmTZD

Score

10^/10

evasion

Malware Config

Targets

- Target
  
  42d557fcdd3f45208914524993aa4bcf_JaffaCakes118
- Size
  
  50KB
- MD5
  
  42d557fcdd3f45208914524993aa4bcf
- SHA1
  
  a5a8abeed11c972ef1476f3ff6054b22f871066e
- SHA256
  
  81f9089445ff7a6d47f8547cbef99cc08231aa84c6bd7bfd676b2277699f9af7
- SHA512
  
  e3d12f42b76d5bb2f2542b063878ec57c76949ee6eeb95b0f22ca7c5bd07aa73cbdddacf90766769562fac695fdd798d2ee22cb5c7e1ba0857db66101e8362be
- SSDEEP
  
  768:yiT5cxpyYqCNsiKudQhK+EuQxMMTdgNf6VeY/BbzLOAoQFXmQMD5zNF:yi4pyY1NsiKudqOCCdafNYdzLHvmTZD
Score

10^/10

evasion
- Modifies firewall policy service
  evasion
- Drops file in Drivers directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Disable or Modify System Firewall

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2