2afb5fb2fcf90151b1004c199a75d9fcdee62a07b31ac6e0786dfc8fb2050e55 | Triage

Sharing

General

Target

6a8b56d2763fa28efe74fbbeeed73890_JaffaCakes118
Size

199KB
Sample

240724-g13svasarm
MD5

6a8b56d2763fa28efe74fbbeeed73890
SHA1

4792e7dbc4a8a7e89a5c79d4808e1186fc8481e1
SHA256

2afb5fb2fcf90151b1004c199a75d9fcdee62a07b31ac6e0786dfc8fb2050e55
SHA512

687ae3a06288efc486b5871c2f781422d5ddf51a8c030dd8f3e7f511fd9592c39bce970159b3774057e355604a9b2a119b8fd6a0d12f96858aa69d2383ec4b2f
SSDEEP

3072:g2EQhaXe/i/iJijRjrxPzX/YvsGHhVVsrjW2+MFH3G:g1XDhjhxLPYbsrjxjFH2

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  6a8b56d2763fa28efe74fbbeeed73890_JaffaCakes118
- Size
  
  199KB
- MD5
  
  6a8b56d2763fa28efe74fbbeeed73890
- SHA1
  
  4792e7dbc4a8a7e89a5c79d4808e1186fc8481e1
- SHA256
  
  2afb5fb2fcf90151b1004c199a75d9fcdee62a07b31ac6e0786dfc8fb2050e55
- SHA512
  
  687ae3a06288efc486b5871c2f781422d5ddf51a8c030dd8f3e7f511fd9592c39bce970159b3774057e355604a9b2a119b8fd6a0d12f96858aa69d2383ec4b2f
- SSDEEP
  
  3072:g2EQhaXe/i/iJijRjrxPzX/YvsGHhVVsrjW2+MFH3G:g1XDhjhxLPYbsrjxjFH2
Score

10^/10

discovery evasion
- Modifies firewall policy service
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Disable or Modify System Firewall

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoveryevasion