c6da353177acc6553a28e516dbf23a7b3a0efb0125fe43f9c632a99d13017761 | Triage

Sharing

General

Target

eabe5c09b7b16fb0ccc4fef125012fc6_JaffaCakes118
Size

174KB
Sample

240919-g1jd7svdqq
MD5

eabe5c09b7b16fb0ccc4fef125012fc6
SHA1

4cfe342cc451f5009b0b922d8fa9ba0e264e56f5
SHA256

c6da353177acc6553a28e516dbf23a7b3a0efb0125fe43f9c632a99d13017761
SHA512

eca6456fd3750c66480a6feaa8bdfba21d08db4accdb6cafeabbba5d1b2ca3260f4c075dfac43d0d6167ed2743ed6c4df78feb4e377abe954ac948fc23716d42
SSDEEP

3072:WyK7YU+s7dScGdolnUbNeZI+qCfZY11YavjLf+s/F5tDyMREMO3kfH:WHP7/GdouNeZrrfWTLCutOk/

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  eabe5c09b7b16fb0ccc4fef125012fc6_JaffaCakes118
- Size
  
  174KB
- MD5
  
  eabe5c09b7b16fb0ccc4fef125012fc6
- SHA1
  
  4cfe342cc451f5009b0b922d8fa9ba0e264e56f5
- SHA256
  
  c6da353177acc6553a28e516dbf23a7b3a0efb0125fe43f9c632a99d13017761
- SHA512
  
  eca6456fd3750c66480a6feaa8bdfba21d08db4accdb6cafeabbba5d1b2ca3260f4c075dfac43d0d6167ed2743ed6c4df78feb4e377abe954ac948fc23716d42
- SSDEEP
  
  3072:WyK7YU+s7dScGdolnUbNeZI+qCfZY11YavjLf+s/F5tDyMREMO3kfH:WHP7/GdouNeZrrfWTLCutOk/
Score

10^/10

discovery evasion
- Modifies firewall policy service
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Disable or Modify System Firewall

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoveryevasion