39cfbd51b22f92d590ce6bd6adc4cee34b3e685d553d8412f682f13541bdc250 | Triage

Sharing

General

Target

d29a3965c3c37a679261b68647a0bb5b_JaffaCakes118
Size

393KB
Sample

240907-xdytda1dlf
MD5

d29a3965c3c37a679261b68647a0bb5b
SHA1

88218244b84186ad939069d6d2ccf8ab63d7a531
SHA256

39cfbd51b22f92d590ce6bd6adc4cee34b3e685d553d8412f682f13541bdc250
SHA512

dcc9eaf57e4bfb50d1e7021490234a9099957f0bf69d0a45cc4394ee24287d4278f551e4c8c63f19a37b4aeeb026529629f8f722995aced9e3f8e99b9d0bc53b
SSDEEP

6144:dC2+VNSbLuOHOsebkT86qOXm0jYrq+ulrlZNxw4vSJB2nDaDIjoBvoVg1Cxt17:Y7SWO9mOnCulnoRT2nGDIjcAWSt17

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  d29a3965c3c37a679261b68647a0bb5b_JaffaCakes118
- Size
  
  393KB
- MD5
  
  d29a3965c3c37a679261b68647a0bb5b
- SHA1
  
  88218244b84186ad939069d6d2ccf8ab63d7a531
- SHA256
  
  39cfbd51b22f92d590ce6bd6adc4cee34b3e685d553d8412f682f13541bdc250
- SHA512
  
  dcc9eaf57e4bfb50d1e7021490234a9099957f0bf69d0a45cc4394ee24287d4278f551e4c8c63f19a37b4aeeb026529629f8f722995aced9e3f8e99b9d0bc53b
- SSDEEP
  
  6144:dC2+VNSbLuOHOsebkT86qOXm0jYrq+ulrlZNxw4vSJB2nDaDIjoBvoVg1Cxt17:Y7SWO9mOnCulnoRT2nGDIjcAWSt17
Score

10^/10

discovery evasion
- Modifies firewall policy service
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Disable or Modify System Firewall

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasion

behavioral2

discoveryevasion