766a6723c7d4f91bd0f22d5b694d380289e8c97ffd7ea8dd12f0a9623d42ea01 | Triage

Sharing

General

Target

01738da80095f45cd32b643b00adc3ef_JaffaCakes118
Size

51KB
Sample

240930-p763va1apb
MD5

01738da80095f45cd32b643b00adc3ef
SHA1

27333cd23175edc0fc4d5c5278f64f86f555089b
SHA256

766a6723c7d4f91bd0f22d5b694d380289e8c97ffd7ea8dd12f0a9623d42ea01
SHA512

0dd79af5404a8c2ff6b531bfe9d5a02b875ed93c552271c4a1433c7970cd6c4e5673655c8a20614a794f2ad0831e552c8ab3e936c2e9a818d746e34d4c3b2dfe
SSDEEP

1536:LyqHyOR+a7DgyuroQqxkMeGOd8DZy7gS:PHy6crxq/eGvD87g

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  01738da80095f45cd32b643b00adc3ef_JaffaCakes118
- Size
  
  51KB
- MD5
  
  01738da80095f45cd32b643b00adc3ef
- SHA1
  
  27333cd23175edc0fc4d5c5278f64f86f555089b
- SHA256
  
  766a6723c7d4f91bd0f22d5b694d380289e8c97ffd7ea8dd12f0a9623d42ea01
- SHA512
  
  0dd79af5404a8c2ff6b531bfe9d5a02b875ed93c552271c4a1433c7970cd6c4e5673655c8a20614a794f2ad0831e552c8ab3e936c2e9a818d746e34d4c3b2dfe
- SSDEEP
  
  1536:LyqHyOR+a7DgyuroQqxkMeGOd8DZy7gS:PHy6crxq/eGvD87g
Score

10^/10

discovery evasion
- Modifies firewall policy service
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Disable or Modify System Firewall

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoveryevasion