6e52ce93c406285f3b62f3ac14612e458f0bc71af59f773245e913970ed71fc4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a89b66922a6d3992d14309c83db60372_JaffaCakes118
Size

45KB
Sample

240818-26yfjazfpd
MD5

a89b66922a6d3992d14309c83db60372
SHA1

c9c56810d0343e3e4dc65628f0e6dc3cfa0a7441
SHA256

6e52ce93c406285f3b62f3ac14612e458f0bc71af59f773245e913970ed71fc4
SHA512

545f03a121b23dfd63d93d84c46668fcc5f06ee235454c981f590c92132c4e202de641c3dfef0a46a6bddd421ee16dc628f80c0542626e16293a535c7954af33
SSDEEP

768:pS6/FQ1mk+zqvqDQ1xhqNM99Z4you23E91hVH71evz1QEcnp8qFpRoa+CUxpmw6:06aMkb6uZboP3ybR8cp8qTea+3Aw

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  a89b66922a6d3992d14309c83db60372_JaffaCakes118
- Size
  
  45KB
- MD5
  
  a89b66922a6d3992d14309c83db60372
- SHA1
  
  c9c56810d0343e3e4dc65628f0e6dc3cfa0a7441
- SHA256
  
  6e52ce93c406285f3b62f3ac14612e458f0bc71af59f773245e913970ed71fc4
- SHA512
  
  545f03a121b23dfd63d93d84c46668fcc5f06ee235454c981f590c92132c4e202de641c3dfef0a46a6bddd421ee16dc628f80c0542626e16293a535c7954af33
- SSDEEP
  
  768:pS6/FQ1mk+zqvqDQ1xhqNM99Z4you23E91hVH71evz1QEcnp8qFpRoa+CUxpmw6:06aMkb6uZboP3ybR8cp8qTea+3Aw
Score

10^/10

discovery evasion
- Modifies firewall policy service
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Disable or Modify System Firewall

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoveryevasion