61be6b5d593c91192c12a8485f4fcd06f0286bd851552a737ed317107dce9de2 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f70243e7a33a0c19119a9ae75d617e73_JaffaCakes118
Size

60KB
Sample

240925-2rs79svgmb
MD5

f70243e7a33a0c19119a9ae75d617e73
SHA1

8527ce6e389fe424402049275a881fa7883b5f24
SHA256

61be6b5d593c91192c12a8485f4fcd06f0286bd851552a737ed317107dce9de2
SHA512

fc03b8b40194f7a9158aebdc4ea3f07353c93f5e549dcd3e00e0e24aec721fa23cbb6e19f6d76c2e15c65459c8533c38f00d33da973aefc9fcde9afecdcc12dc
SSDEEP

1536:cpln5IUmDjoXuv8OZQ/eKzteGOdibtr9:cpln5I1v8OszjOcbtr

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  f70243e7a33a0c19119a9ae75d617e73_JaffaCakes118
- Size
  
  60KB
- MD5
  
  f70243e7a33a0c19119a9ae75d617e73
- SHA1
  
  8527ce6e389fe424402049275a881fa7883b5f24
- SHA256
  
  61be6b5d593c91192c12a8485f4fcd06f0286bd851552a737ed317107dce9de2
- SHA512
  
  fc03b8b40194f7a9158aebdc4ea3f07353c93f5e549dcd3e00e0e24aec721fa23cbb6e19f6d76c2e15c65459c8533c38f00d33da973aefc9fcde9afecdcc12dc
- SSDEEP
  
  1536:cpln5IUmDjoXuv8OZQ/eKzteGOdibtr9:cpln5I1v8OszjOcbtr
Score

10^/10

discovery evasion
- Modifies firewall policy service
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Disable or Modify System Firewall

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoveryevasion