4532c5f7433dfe0154f5156683c73b4e54d25cc1503e5673299b3ccd2fb7980e | Triage

Sharing

General

Target

edc2f51f5993813e29ee1df89c065427_JaffaCakes118
Size

96KB
Sample

240920-rjbm5s1cjq
MD5

edc2f51f5993813e29ee1df89c065427
SHA1

725aa1da7f5d6b1f73098f49c290b153495f99b3
SHA256

4532c5f7433dfe0154f5156683c73b4e54d25cc1503e5673299b3ccd2fb7980e
SHA512

f99c9e8788738b5ba54c83668d2019a94df23eaa878a9a0740062c587fdb22fab8d62692034ff18d7fde48c4a6e5dbf3e9ce3d95ca33fbd08b58f16475c722b4
SSDEEP

1536:NHjRApownpa6YZ+t5gKFu8BpSUxaBXnO8zlEJKjwPkJ9kJ6ZafXgpRavf:NH9YVnUjUR1uXOklEnPkJ9C//gWf

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  edc2f51f5993813e29ee1df89c065427_JaffaCakes118
- Size
  
  96KB
- MD5
  
  edc2f51f5993813e29ee1df89c065427
- SHA1
  
  725aa1da7f5d6b1f73098f49c290b153495f99b3
- SHA256
  
  4532c5f7433dfe0154f5156683c73b4e54d25cc1503e5673299b3ccd2fb7980e
- SHA512
  
  f99c9e8788738b5ba54c83668d2019a94df23eaa878a9a0740062c587fdb22fab8d62692034ff18d7fde48c4a6e5dbf3e9ce3d95ca33fbd08b58f16475c722b4
- SSDEEP
  
  1536:NHjRApownpa6YZ+t5gKFu8BpSUxaBXnO8zlEJKjwPkJ9kJ6ZafXgpRavf:NH9YVnUjUR1uXOklEnPkJ9C//gWf
Score

10^/10

discovery evasion
- Modifies firewall policy service
  evasion
- Drops file in Drivers directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Disable or Modify System Firewall

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoveryevasion