ede0da36217a1832e611fc6c4c07d45b33920ffc7d4bd5dc229ea89c0fef0de4 | Triage

Sharing

General

Target

ef1cd05e06b6fe2516b064693e1b44a9_JaffaCakes118
Size

96KB
Sample

240921-fn254swdle
MD5

ef1cd05e06b6fe2516b064693e1b44a9
SHA1

041b14fbc2c31f440e37397556b645790fb69b38
SHA256

ede0da36217a1832e611fc6c4c07d45b33920ffc7d4bd5dc229ea89c0fef0de4
SHA512

067c981cbff26f13d03239dee9dd9fcfe8a7825f879121566ae92f9c751aa3dec4ebf2b56b99db4b860fb4fac9572c26f24dbd17a72487212c67d25fe58efa45
SSDEEP

1536:IseYZxHeOoSLvwVMpmErW5IMZASsF1RJly5TPwX5sknoMWehnHQgDsP6JuavLLMV:Is7ZxHeRqvwVZmIASsFLiM5sknoM1Gv9

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  ef1cd05e06b6fe2516b064693e1b44a9_JaffaCakes118
- Size
  
  96KB
- MD5
  
  ef1cd05e06b6fe2516b064693e1b44a9
- SHA1
  
  041b14fbc2c31f440e37397556b645790fb69b38
- SHA256
  
  ede0da36217a1832e611fc6c4c07d45b33920ffc7d4bd5dc229ea89c0fef0de4
- SHA512
  
  067c981cbff26f13d03239dee9dd9fcfe8a7825f879121566ae92f9c751aa3dec4ebf2b56b99db4b860fb4fac9572c26f24dbd17a72487212c67d25fe58efa45
- SSDEEP
  
  1536:IseYZxHeOoSLvwVMpmErW5IMZASsF1RJly5TPwX5sknoMWehnHQgDsP6JuavLLMV:Is7ZxHeRqvwVZmIASsFLiM5sknoM1Gv9
Score

10^/10

discovery evasion
- Modifies firewall policy service
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Disable or Modify System Firewall

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoveryevasion