1e41f01fb7e7c583b122bfec4be6399f7f2b60955534b72bc5011e64b9651322 | Triage

Sharing

General

Target

8203c9f222f72c3c336d982c90417cb9_JaffaCakes118
Size

236KB
Sample

240801-2l7hpszemr
MD5

8203c9f222f72c3c336d982c90417cb9
SHA1

bbffc9abbb20922efbca82930cb9ba829906a7d6
SHA256

1e41f01fb7e7c583b122bfec4be6399f7f2b60955534b72bc5011e64b9651322
SHA512

2d57ffb02618c28d5f5f7d64b1346b333d88ddaf557dc7ceb63618ac864c1764b89ed4744848dd060fc549e296151a630c2bdee93820ffebcfb52b5001dc726d
SSDEEP

3072:BIdcFLEdskgrt05bnwhVh6PTPQOcFaoXqQeW7FATbdWGtjW:qWjZ0xCVh6UzIpO5Kw6jW

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  8203c9f222f72c3c336d982c90417cb9_JaffaCakes118
- Size
  
  236KB
- MD5
  
  8203c9f222f72c3c336d982c90417cb9
- SHA1
  
  bbffc9abbb20922efbca82930cb9ba829906a7d6
- SHA256
  
  1e41f01fb7e7c583b122bfec4be6399f7f2b60955534b72bc5011e64b9651322
- SHA512
  
  2d57ffb02618c28d5f5f7d64b1346b333d88ddaf557dc7ceb63618ac864c1764b89ed4744848dd060fc549e296151a630c2bdee93820ffebcfb52b5001dc726d
- SSDEEP
  
  3072:BIdcFLEdskgrt05bnwhVh6PTPQOcFaoXqQeW7FATbdWGtjW:qWjZ0xCVh6UzIpO5Kw6jW
Score

10^/10

discovery evasion
- Modifies firewall policy service
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Disable or Modify System Firewall

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoveryevasion