a145c06433ff2740e962a0e8fa6c2bb14078d44abe4cb507e6a4ed4e994b2ac1 | Triage

Sharing

General

Target

86753aacf1b89e9549c6fb923ce6b7ef_JaffaCakes118
Size

34KB
Sample

240810-r2v5hatemn
MD5

86753aacf1b89e9549c6fb923ce6b7ef
SHA1

1fbc0bef8335c3554f9aa1a8003ba3e5af996b6d
SHA256

a145c06433ff2740e962a0e8fa6c2bb14078d44abe4cb507e6a4ed4e994b2ac1
SHA512

5c6b85b6ad81ceb124fc31e78e6e52103ce00e80955e29dced8f2a85124bfe05ea5a3b611656b5b01d3017cb8502de92e6af13ecbb765fad95c92fd652d246aa
SSDEEP

768:xvU+7KrmXcsSpqfAR1OVfuMcp71Axg1tvn:e+7u8cs0q28wME71wg1tv

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  86753aacf1b89e9549c6fb923ce6b7ef_JaffaCakes118
- Size
  
  34KB
- MD5
  
  86753aacf1b89e9549c6fb923ce6b7ef
- SHA1
  
  1fbc0bef8335c3554f9aa1a8003ba3e5af996b6d
- SHA256
  
  a145c06433ff2740e962a0e8fa6c2bb14078d44abe4cb507e6a4ed4e994b2ac1
- SHA512
  
  5c6b85b6ad81ceb124fc31e78e6e52103ce00e80955e29dced8f2a85124bfe05ea5a3b611656b5b01d3017cb8502de92e6af13ecbb765fad95c92fd652d246aa
- SSDEEP
  
  768:xvU+7KrmXcsSpqfAR1OVfuMcp71Axg1tvn:e+7u8cs0q28wME71wg1tv
Score

10^/10

discovery evasion
- Modifies firewall policy service
  evasion
- Drops file in Drivers directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Disable or Modify System Firewall

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoveryevasion