98fe939fa8180e57d547a384c26b0ea405871d53cb320bbb6fcf9ce303d8d626 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fd2d48bd96d089f4cf0c1308fc5c0fa6_JaffaCakes118
Size

103KB
Sample

240928-1cmlhaxblp
MD5

fd2d48bd96d089f4cf0c1308fc5c0fa6
SHA1

89d38b0ea430a33934077e7c92003d63ab3e2cfa
SHA256

98fe939fa8180e57d547a384c26b0ea405871d53cb320bbb6fcf9ce303d8d626
SHA512

5fbcc622d54693395b80c64b8768c85b62d814c5e9b38c5647caf84aa9c2860675302668ceedaca65016727dcce2dbbcc1915095d0d565eb616372f27acebd2c
SSDEEP

768:zJoDmLWyW0ND9ACBzSzoPDAu10NNhLWOv7RupicaBWc:doD+WRSdNLArLhLWPp0BWc

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  fd2d48bd96d089f4cf0c1308fc5c0fa6_JaffaCakes118
- Size
  
  103KB
- MD5
  
  fd2d48bd96d089f4cf0c1308fc5c0fa6
- SHA1
  
  89d38b0ea430a33934077e7c92003d63ab3e2cfa
- SHA256
  
  98fe939fa8180e57d547a384c26b0ea405871d53cb320bbb6fcf9ce303d8d626
- SHA512
  
  5fbcc622d54693395b80c64b8768c85b62d814c5e9b38c5647caf84aa9c2860675302668ceedaca65016727dcce2dbbcc1915095d0d565eb616372f27acebd2c
- SSDEEP
  
  768:zJoDmLWyW0ND9ACBzSzoPDAu10NNhLWOv7RupicaBWc:doD+WRSdNLArLhLWPp0BWc
Score

10^/10

discovery evasion
- Modifies firewall policy service
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Disable or Modify System Firewall

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoveryevasion