e6896f9b3bb6642b58fdf5d9962372d12f09f5df9dd7e27962028cabc435172c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

832ad529d0b2acf1c34918f46b24cc54_JaffaCakes118
Size

183KB
Sample

240802-fxca2sxfrq
MD5

832ad529d0b2acf1c34918f46b24cc54
SHA1

db1071755247e8247c4ab33b5791d01738223409
SHA256

e6896f9b3bb6642b58fdf5d9962372d12f09f5df9dd7e27962028cabc435172c
SHA512

061094fee102e2ecb081ff545881527858f9c0623c8414356b38d9ea7cee43e8a3fd7c410c0d9a799872116e4b2bb0eebe062b7ff63636bcdb163f639cd2b32c
SSDEEP

3072:5MZ+lfKp1zwLvT5GnTNOjsvwkEg8n2jEAhrB07dIEj1qh9xHRkgz:5JRKp1zYGBDwPzAVBeFj1q7xHRk

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  832ad529d0b2acf1c34918f46b24cc54_JaffaCakes118
- Size
  
  183KB
- MD5
  
  832ad529d0b2acf1c34918f46b24cc54
- SHA1
  
  db1071755247e8247c4ab33b5791d01738223409
- SHA256
  
  e6896f9b3bb6642b58fdf5d9962372d12f09f5df9dd7e27962028cabc435172c
- SHA512
  
  061094fee102e2ecb081ff545881527858f9c0623c8414356b38d9ea7cee43e8a3fd7c410c0d9a799872116e4b2bb0eebe062b7ff63636bcdb163f639cd2b32c
- SSDEEP
  
  3072:5MZ+lfKp1zwLvT5GnTNOjsvwkEg8n2jEAhrB07dIEj1qh9xHRkgz:5JRKp1zYGBDwPzAVBeFj1q7xHRk
Score

10^/10

discovery evasion
- Modifies firewall policy service
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Disable or Modify System Firewall

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoveryevasion