12fc3577a388f8cee8276ff9a157df281a400f58b279e1187201b5e4a078344e | Triage

Sharing

General

Target

eddcffa1920ac4f4e2ce99f8a6d472de_JaffaCakes118
Size

103KB
Sample

240920-slzcnasgna
MD5

eddcffa1920ac4f4e2ce99f8a6d472de
SHA1

25a0448cc67800f7de566ff0cb6140075bd7b272
SHA256

12fc3577a388f8cee8276ff9a157df281a400f58b279e1187201b5e4a078344e
SHA512

4c1c4dc26719bb775c67b6e62e3c345620cc75cf97f32dfb8c157c0a8ae923ab54a50b0e7928827a8421c882be4682604595d9332c7992d6082d65272c015c22
SSDEEP

1536:uNKxtCX424eluABS5YfHtaRgBVSU+mnS4vqQ:uoDy42aABS5Y1aUS9mnBvq

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  eddcffa1920ac4f4e2ce99f8a6d472de_JaffaCakes118
- Size
  
  103KB
- MD5
  
  eddcffa1920ac4f4e2ce99f8a6d472de
- SHA1
  
  25a0448cc67800f7de566ff0cb6140075bd7b272
- SHA256
  
  12fc3577a388f8cee8276ff9a157df281a400f58b279e1187201b5e4a078344e
- SHA512
  
  4c1c4dc26719bb775c67b6e62e3c345620cc75cf97f32dfb8c157c0a8ae923ab54a50b0e7928827a8421c882be4682604595d9332c7992d6082d65272c015c22
- SSDEEP
  
  1536:uNKxtCX424eluABS5YfHtaRgBVSU+mnS4vqQ:uoDy42aABS5Y1aUS9mnBvq
Score

10^/10

discovery evasion
- Modifies firewall policy service
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Disable or Modify System Firewall

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoveryevasion