dfe43172ac47a588be90201fd3c4eec5893eeb41ee83ab2c21bda13de6b7fd52 | Triage

Sharing

General

Target

0089468500d5f234e805b29d52a96b2a_JaffaCakes118
Size

66KB
Sample

240930-k5tmhs1glc
MD5

0089468500d5f234e805b29d52a96b2a
SHA1

192788a826b4eb875597208b711fc315ccbe957c
SHA256

dfe43172ac47a588be90201fd3c4eec5893eeb41ee83ab2c21bda13de6b7fd52
SHA512

33236d9fcaf53facfe829b8a00a05b93303c17455ef664daab00e10e54e4f1d2dd5df4b7efcd2de4485dff1707278230fcd1eba50814e10890c23383069187e5
SSDEEP

1536:4yWjJ9x8VKyejHFyhTU3orRD9XZvIg18ZjfbzGQ53mYK:1VZkYU4lRXl18ZqQpmJ

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  0089468500d5f234e805b29d52a96b2a_JaffaCakes118
- Size
  
  66KB
- MD5
  
  0089468500d5f234e805b29d52a96b2a
- SHA1
  
  192788a826b4eb875597208b711fc315ccbe957c
- SHA256
  
  dfe43172ac47a588be90201fd3c4eec5893eeb41ee83ab2c21bda13de6b7fd52
- SHA512
  
  33236d9fcaf53facfe829b8a00a05b93303c17455ef664daab00e10e54e4f1d2dd5df4b7efcd2de4485dff1707278230fcd1eba50814e10890c23383069187e5
- SSDEEP
  
  1536:4yWjJ9x8VKyejHFyhTU3orRD9XZvIg18ZjfbzGQ53mYK:1VZkYU4lRXl18ZqQpmJ
Score

10^/10

discovery evasion
- Modifies firewall policy service
  evasion
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Disable or Modify System Firewall

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoveryevasion