e03251cf545b631f64e5316b1f1c70474ed0a23fee613aff8dfbaa336c8d68a9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e9d7ff6d8056219740c3731a0dcbfa3d_JaffaCakes118
Size

47KB
Sample

240918-ydabfszfrm
MD5

e9d7ff6d8056219740c3731a0dcbfa3d
SHA1

979f97941ff6543e83b3b8e88060c1497f50f676
SHA256

e03251cf545b631f64e5316b1f1c70474ed0a23fee613aff8dfbaa336c8d68a9
SHA512

0df72ca062d6f55c86d1c640c9765eab5fb83933cb644ad5725a9559293b4ef4c233f8075946700bb125fbb48de77767f7f2f2dee069dccf941ad4cf495515ab
SSDEEP

768:XVyw2lLPsJLW5RHaUHc1pPYzFiqsP1uSYpbuvW1VRIh:X72l7Q1McmsP1tOb0W1Mh

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  e9d7ff6d8056219740c3731a0dcbfa3d_JaffaCakes118
- Size
  
  47KB
- MD5
  
  e9d7ff6d8056219740c3731a0dcbfa3d
- SHA1
  
  979f97941ff6543e83b3b8e88060c1497f50f676
- SHA256
  
  e03251cf545b631f64e5316b1f1c70474ed0a23fee613aff8dfbaa336c8d68a9
- SHA512
  
  0df72ca062d6f55c86d1c640c9765eab5fb83933cb644ad5725a9559293b4ef4c233f8075946700bb125fbb48de77767f7f2f2dee069dccf941ad4cf495515ab
- SSDEEP
  
  768:XVyw2lLPsJLW5RHaUHc1pPYzFiqsP1uSYpbuvW1VRIh:X72l7Q1McmsP1tOb0W1Mh
Score

10^/10

discovery evasion
- Modifies firewall policy service
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Disable or Modify System Firewall

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoveryevasion