42144150896c527487e9e7eed9c1ce0bac38a1ad4b1e13b57d72d3814f07b29e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

75c44374aa89fe7e56f044518f916604_JaffaCakes118
Size

465KB
Sample

240726-z5x29svgmq
MD5

75c44374aa89fe7e56f044518f916604
SHA1

325ca738cf6280f922b07523edd668a62bcc147f
SHA256

42144150896c527487e9e7eed9c1ce0bac38a1ad4b1e13b57d72d3814f07b29e
SHA512

52d0019da51e5a5ddd4a924d3285b8c12ef3593cf5ae009dcbc2fdd957b13d8920a791658bc7bdbabd5a408efe7ae300fb463e684efd1d58e9dcace228c9fef4
SSDEEP

6144:CAyQCS1GRiPUplWzTFyXNEC3n6PJvrZ8s88bPDGaKY7PkXh8WiePC1P3NKBZGl93:vA08MAkvNbPqNXLiUw/N86wm7j

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  75c44374aa89fe7e56f044518f916604_JaffaCakes118
- Size
  
  465KB
- MD5
  
  75c44374aa89fe7e56f044518f916604
- SHA1
  
  325ca738cf6280f922b07523edd668a62bcc147f
- SHA256
  
  42144150896c527487e9e7eed9c1ce0bac38a1ad4b1e13b57d72d3814f07b29e
- SHA512
  
  52d0019da51e5a5ddd4a924d3285b8c12ef3593cf5ae009dcbc2fdd957b13d8920a791658bc7bdbabd5a408efe7ae300fb463e684efd1d58e9dcace228c9fef4
- SSDEEP
  
  6144:CAyQCS1GRiPUplWzTFyXNEC3n6PJvrZ8s88bPDGaKY7PkXh8WiePC1P3NKBZGl93:vA08MAkvNbPqNXLiUw/N86wm7j
Score

10^/10

discovery evasion
- Modifies firewall policy service
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Disable or Modify System Firewall

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoveryevasion