70152b0b91f66abc113463734c16faeec185fab5d630b27fd7213c40b58ba494 | Triage

Sharing

General

Target

5a04f3d7645b10d94c9deaad2be42219_JaffaCakes118
Size

48KB
Sample

240719-cerq8s1akg
MD5

5a04f3d7645b10d94c9deaad2be42219
SHA1

c5c4615cf50b6b92734f582468067bcb5e3ce0fe
SHA256

70152b0b91f66abc113463734c16faeec185fab5d630b27fd7213c40b58ba494
SHA512

ef7c493bfd31ba271f0bb629c9f70a0a31f4bf787dd7837e97a20a1cf523b4274a2c9854f09cf11bfffb1edf000228bd2e95ddf83d9f5af26cf1b9da909b9328
SSDEEP

768:LuOuQd+QL/xfzHbEbsfgfgfgf11s3I1s3+1s3oRsjhguyR+BKEJeVIBy/OyE+:L39+Qtd3xjtgu11JeVX9

Score

10^/10

evasion

Malware Config

Targets

- Target
  
  5a04f3d7645b10d94c9deaad2be42219_JaffaCakes118
- Size
  
  48KB
- MD5
  
  5a04f3d7645b10d94c9deaad2be42219
- SHA1
  
  c5c4615cf50b6b92734f582468067bcb5e3ce0fe
- SHA256
  
  70152b0b91f66abc113463734c16faeec185fab5d630b27fd7213c40b58ba494
- SHA512
  
  ef7c493bfd31ba271f0bb629c9f70a0a31f4bf787dd7837e97a20a1cf523b4274a2c9854f09cf11bfffb1edf000228bd2e95ddf83d9f5af26cf1b9da909b9328
- SSDEEP
  
  768:LuOuQd+QL/xfzHbEbsfgfgfgf11s3I1s3+1s3oRsjhguyR+BKEJeVIBy/OyE+:L39+Qtd3xjtgu11JeVX9
Score

10^/10

evasion
- Modifies firewall policy service
  evasion
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Disable or Modify System Firewall

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2