b323ec02dcc12b7741d1945dbf2b709c6ffc95c4e8fd649560a5011c9f61c0b2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a7f7e1d5e6a51c3e70c00b0e276de24b_JaffaCakes118
Size

50KB
Sample

240818-ygsl7s1brd
MD5

a7f7e1d5e6a51c3e70c00b0e276de24b
SHA1

aa0dccb9ddcef3ffe9e0fb7878256369d8410976
SHA256

b323ec02dcc12b7741d1945dbf2b709c6ffc95c4e8fd649560a5011c9f61c0b2
SHA512

2a97d800eccf574d7025fe50e84e4110d2f9076a1b1218ccaa4bf32ad5ccf08d746a6a2afd38bb8261b7195c1460febbe674f18b0d1e14ad9f4d17c0a59bbf18
SSDEEP

1536:ut6kYvUaxl91HLl7Q4gmkj7FSdqCRlaq:+6/ZLlQ4n07hHq

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  a7f7e1d5e6a51c3e70c00b0e276de24b_JaffaCakes118
- Size
  
  50KB
- MD5
  
  a7f7e1d5e6a51c3e70c00b0e276de24b
- SHA1
  
  aa0dccb9ddcef3ffe9e0fb7878256369d8410976
- SHA256
  
  b323ec02dcc12b7741d1945dbf2b709c6ffc95c4e8fd649560a5011c9f61c0b2
- SHA512
  
  2a97d800eccf574d7025fe50e84e4110d2f9076a1b1218ccaa4bf32ad5ccf08d746a6a2afd38bb8261b7195c1460febbe674f18b0d1e14ad9f4d17c0a59bbf18
- SSDEEP
  
  1536:ut6kYvUaxl91HLl7Q4gmkj7FSdqCRlaq:+6/ZLlQ4n07hHq
Score

10^/10

discovery evasion
- Modifies firewall policy service
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Disable or Modify System Firewall

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoveryevasion