9f54f2f680fc87ce6978c50366468c58f1e7e62225061247509235f99d9e2efb | Triage

Sharing

General

Target

ed5b9c23a8636ffca7aa9c240a3d7a1d_JaffaCakes118
Size

391KB
Sample

240920-l4f6ga1bqb
MD5

ed5b9c23a8636ffca7aa9c240a3d7a1d
SHA1

24b6aee162f5b42a24ef228fd0cd829a09511df2
SHA256

9f54f2f680fc87ce6978c50366468c58f1e7e62225061247509235f99d9e2efb
SHA512

c810d9abc5298b3f402a225cd91e2f35e878bda93742f3b767069067922acc0ddf9f7e688c92fc6ccb0b30668c95b778259f910fedd88b8afbfc1100f1457b73
SSDEEP

6144:KX4qKuLDNW+EGqFeao7lAulu7eTl93t+DJxDT1z782j/ZIX710++p7sM6Eb77C/:1Pug+OFej7lXk4l/UJ35ih0+iT/b2

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  ed5b9c23a8636ffca7aa9c240a3d7a1d_JaffaCakes118
- Size
  
  391KB
- MD5
  
  ed5b9c23a8636ffca7aa9c240a3d7a1d
- SHA1
  
  24b6aee162f5b42a24ef228fd0cd829a09511df2
- SHA256
  
  9f54f2f680fc87ce6978c50366468c58f1e7e62225061247509235f99d9e2efb
- SHA512
  
  c810d9abc5298b3f402a225cd91e2f35e878bda93742f3b767069067922acc0ddf9f7e688c92fc6ccb0b30668c95b778259f910fedd88b8afbfc1100f1457b73
- SSDEEP
  
  6144:KX4qKuLDNW+EGqFeao7lAulu7eTl93t+DJxDT1z782j/ZIX710++p7sM6Eb77C/:1Pug+OFej7lXk4l/UJ35ih0+iT/b2
Score

10^/10

discovery evasion
- Modifies firewall policy service
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Disable or Modify System Firewall

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasion

behavioral2

discoveryevasion