b1110d864752a6440980acca0db28e5c4992dbd80afc40c1f8e3e5215517429d | Triage

Sharing

General

Target

a29a92a864a0a438013b7aad1be71566_JaffaCakes118
Size

33KB
Sample

240817-p4hk3syhrn
MD5

a29a92a864a0a438013b7aad1be71566
SHA1

b75d48b9a146129fd0976172a756cd4044c3a316
SHA256

b1110d864752a6440980acca0db28e5c4992dbd80afc40c1f8e3e5215517429d
SHA512

876855784639477e90024ef62536933b0970c2ac756355e069c060e9321944c5c1ae403b46aa7a02d1eb3ff3f81b1a38fb5a30494b220ac605049346ba936e73
SSDEEP

768:CMTDT/SmTNe8EgHdRlLPsHj3P16H1gjoauZpdmG7jf0vC6gEa:Lf5HLl7+L16ijPymcf0vVa

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  a29a92a864a0a438013b7aad1be71566_JaffaCakes118
- Size
  
  33KB
- MD5
  
  a29a92a864a0a438013b7aad1be71566
- SHA1
  
  b75d48b9a146129fd0976172a756cd4044c3a316
- SHA256
  
  b1110d864752a6440980acca0db28e5c4992dbd80afc40c1f8e3e5215517429d
- SHA512
  
  876855784639477e90024ef62536933b0970c2ac756355e069c060e9321944c5c1ae403b46aa7a02d1eb3ff3f81b1a38fb5a30494b220ac605049346ba936e73
- SSDEEP
  
  768:CMTDT/SmTNe8EgHdRlLPsHj3P16H1gjoauZpdmG7jf0vC6gEa:Lf5HLl7+L16ijPymcf0vVa
Score

10^/10

discovery evasion
- Modifies firewall policy service
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Disable or Modify System Firewall

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoveryevasion