a2b9386e231c9e599b6edc292497bf1c1447f7e1d5d8a0aa7a8addbc671d5904 | Triage

Sharing

General

Target

ee9204bd48e22341ed5f3b10656e6d72_JaffaCakes118
Size

154KB
Sample

240920-2nkfyssfjn
MD5

ee9204bd48e22341ed5f3b10656e6d72
SHA1

30edb01f85912da032fa9a73c3fc9415b058b3ac
SHA256

a2b9386e231c9e599b6edc292497bf1c1447f7e1d5d8a0aa7a8addbc671d5904
SHA512

962a99d6d0d349a74c94671160dea0e9eadbe00bb4b6b9b29a5b7b9e07b2c0de13a06cd2674e8887fa2e36244b1df4a118406366c078ce6c7d2dc6668107d35f
SSDEEP

3072:p+Bnu1zwLvFZRIZNg66Vu3ZXLuMtKRk7x10yw:4Bu1zERIZb6Vu357t1W

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  ee9204bd48e22341ed5f3b10656e6d72_JaffaCakes118
- Size
  
  154KB
- MD5
  
  ee9204bd48e22341ed5f3b10656e6d72
- SHA1
  
  30edb01f85912da032fa9a73c3fc9415b058b3ac
- SHA256
  
  a2b9386e231c9e599b6edc292497bf1c1447f7e1d5d8a0aa7a8addbc671d5904
- SHA512
  
  962a99d6d0d349a74c94671160dea0e9eadbe00bb4b6b9b29a5b7b9e07b2c0de13a06cd2674e8887fa2e36244b1df4a118406366c078ce6c7d2dc6668107d35f
- SSDEEP
  
  3072:p+Bnu1zwLvFZRIZNg66Vu3ZXLuMtKRk7x10yw:4Bu1zERIZb6Vu357t1W
Score

10^/10

discovery evasion
- Modifies firewall policy service
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Disable or Modify System Firewall

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoveryevasion