222c6e69aefd7eb04c4f761098ec26154cff2589d401522a2e94acdf1c1b7b1d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

63ee7eaf4aa35f7d52f7a5eabe8f111d_JaffaCakes118
Size

265KB
Sample

240722-t1tamawgnc
MD5

63ee7eaf4aa35f7d52f7a5eabe8f111d
SHA1

660b16bb18f15ee90baa6078c222bb7aae762a9a
SHA256

222c6e69aefd7eb04c4f761098ec26154cff2589d401522a2e94acdf1c1b7b1d
SHA512

d707453e45401b5f700e328f7f4f4b936a58dc3733e95c49c742ff0e4205fa8615868c791ed6e928213f1cbeda2d6aec4852428ba2421c640a811438be708629
SSDEEP

3072:LBVPKMQqHulodvQR2XNpNRfQfrCJJDTnRQs4aPhwcfA/ya9U+P+hQ2qSM:lZnXQrCJ95ZPa/ya6ThQ2nM

Score

10^/10

evasion

Malware Config

Targets

- Target
  
  63ee7eaf4aa35f7d52f7a5eabe8f111d_JaffaCakes118
- Size
  
  265KB
- MD5
  
  63ee7eaf4aa35f7d52f7a5eabe8f111d
- SHA1
  
  660b16bb18f15ee90baa6078c222bb7aae762a9a
- SHA256
  
  222c6e69aefd7eb04c4f761098ec26154cff2589d401522a2e94acdf1c1b7b1d
- SHA512
  
  d707453e45401b5f700e328f7f4f4b936a58dc3733e95c49c742ff0e4205fa8615868c791ed6e928213f1cbeda2d6aec4852428ba2421c640a811438be708629
- SSDEEP
  
  3072:LBVPKMQqHulodvQR2XNpNRfQfrCJJDTnRQs4aPhwcfA/ya9U+P+hQ2qSM:lZnXQrCJ95ZPa/ya6ThQ2nM
Score

10^/10

evasion
- Modifies firewall policy service
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Disable or Modify System Firewall

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2