fc4028608bfff81aed501aea749afeeffbe75c193aab4cadeccde4d3adc33a80 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

166d629f174c1773e52bb439cb6cb42f_JaffaCakes118
Size

40KB
Sample

241005-gmnf1aygnj
MD5

166d629f174c1773e52bb439cb6cb42f
SHA1

22ac80ce10b07f7ff005ed763579de07a7cfd29d
SHA256

fc4028608bfff81aed501aea749afeeffbe75c193aab4cadeccde4d3adc33a80
SHA512

eeb6c8b265fa53112ea5d19a4fc32bdadddff9b5631ba41564a3be9adf517ae9a64362358afe398a05314facbdc6110b186f4f25fb94c3586d21f3a386cfc3d1
SSDEEP

384:hR7FeWHA8fCpTWd9eKBELzU5Vtzll46tNg:hLdLCpKd0YQCtE6tN

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  166d629f174c1773e52bb439cb6cb42f_JaffaCakes118
- Size
  
  40KB
- MD5
  
  166d629f174c1773e52bb439cb6cb42f
- SHA1
  
  22ac80ce10b07f7ff005ed763579de07a7cfd29d
- SHA256
  
  fc4028608bfff81aed501aea749afeeffbe75c193aab4cadeccde4d3adc33a80
- SHA512
  
  eeb6c8b265fa53112ea5d19a4fc32bdadddff9b5631ba41564a3be9adf517ae9a64362358afe398a05314facbdc6110b186f4f25fb94c3586d21f3a386cfc3d1
- SSDEEP
  
  384:hR7FeWHA8fCpTWd9eKBELzU5Vtzll46tNg:hLdLCpKd0YQCtE6tN
Score

10^/10

discovery evasion
- Modifies firewall policy service
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Disable or Modify System Firewall

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasion

behavioral2

discoveryevasion