b925bbb17812504bf92c27086b89d44f5481de995bbc58ce0ed3e9e7659253fe | Triage

Sharing

General

Target

bf5bd48ab2c03066b068219dd0143a6a_JaffaCakes118
Size

480KB
Sample

240824-zetbdsyand
MD5

bf5bd48ab2c03066b068219dd0143a6a
SHA1

bb860193e89adc6ba4bff89b9faae8c8cb6004d3
SHA256

b925bbb17812504bf92c27086b89d44f5481de995bbc58ce0ed3e9e7659253fe
SHA512

46c3cde1f0b91f83b6b5b95d432e8737b42f86ce94bcbc01a58ed9ab809dfced32046f13dc83dec377fe07e3288f1e53f5eea92baf26c566afa2dd518662dd1b
SSDEEP

6144:ZPxeJT98r37tULFImYU9GHkJTLPENChk:ZphaxIs3vPa

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  bf5bd48ab2c03066b068219dd0143a6a_JaffaCakes118
- Size
  
  480KB
- MD5
  
  bf5bd48ab2c03066b068219dd0143a6a
- SHA1
  
  bb860193e89adc6ba4bff89b9faae8c8cb6004d3
- SHA256
  
  b925bbb17812504bf92c27086b89d44f5481de995bbc58ce0ed3e9e7659253fe
- SHA512
  
  46c3cde1f0b91f83b6b5b95d432e8737b42f86ce94bcbc01a58ed9ab809dfced32046f13dc83dec377fe07e3288f1e53f5eea92baf26c566afa2dd518662dd1b
- SSDEEP
  
  6144:ZPxeJT98r37tULFImYU9GHkJTLPENChk:ZphaxIs3vPa
Score

10^/10

discovery evasion
- Modifies firewall policy service
  evasion
- Drops file in Drivers directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Disable or Modify System Firewall

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoveryevasion