fe6dfffe1c1a50321a1d1d3d3d039ce65023526fb317f35d682026331c8825a4 | Triage

Sharing

General

Target

9fcd867dc11848fc5d21b21445fbc7b9_JaffaCakes118
Size

1.3MB
Sample

240816-y6rffaydjp
MD5

9fcd867dc11848fc5d21b21445fbc7b9
SHA1

385c2c4d9854bf8edcd2649109480a3595fed220
SHA256

fe6dfffe1c1a50321a1d1d3d3d039ce65023526fb317f35d682026331c8825a4
SHA512

496ed0442d24f79cf0c31c1983e555b14309a6028a4bd4a740cf224e1fbe5da4d40e698455ee1e6b7c7105cdb0463f58f76e5715fca682262a6312840a287adf
SSDEEP

24576:pA/zIXUanZNaDtXB1lq9YGqbBDrR1LL68pSKGHuR/0O0oAfnJWp:pAoPnZEDtXHM9Yfb5r/LmAAfnJW

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  9fcd867dc11848fc5d21b21445fbc7b9_JaffaCakes118
- Size
  
  1.3MB
- MD5
  
  9fcd867dc11848fc5d21b21445fbc7b9
- SHA1
  
  385c2c4d9854bf8edcd2649109480a3595fed220
- SHA256
  
  fe6dfffe1c1a50321a1d1d3d3d039ce65023526fb317f35d682026331c8825a4
- SHA512
  
  496ed0442d24f79cf0c31c1983e555b14309a6028a4bd4a740cf224e1fbe5da4d40e698455ee1e6b7c7105cdb0463f58f76e5715fca682262a6312840a287adf
- SSDEEP
  
  24576:pA/zIXUanZNaDtXB1lq9YGqbBDrR1LL68pSKGHuR/0O0oAfnJWp:pAoPnZEDtXHM9Yfb5r/LmAAfnJW
Score

10^/10

discovery evasion
- Modifies firewall policy service
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Disable or Modify System Firewall

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoveryevasion