b5cf8cf9fc3fb7ff99e9e8fff11cdce7ab6d8eae8c027de161db494f75982bfe | Triage

Sharing

General

Target

27beecf2efc747ed16a156748055bf64_JaffaCakes118
Size

72KB
Sample

241009-as4lvaxfre
MD5

27beecf2efc747ed16a156748055bf64
SHA1

3257536861b0a6d388b6aa1472b24f5f0557774d
SHA256

b5cf8cf9fc3fb7ff99e9e8fff11cdce7ab6d8eae8c027de161db494f75982bfe
SHA512

6cfb09df1684b437b4f0cef0ff91d9b3429ec04c4daa8ef352803cd1d18856112717acabb7db811b93f41785387bee57fc05be139fc2d4d9e8b6bf9bf1e7b338
SSDEEP

1536:u+nA4KoI5J6gyr2DieSgMGWCt31IvmHuoeIH:u+A41EJ6gyr2WTGP1Io

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  27beecf2efc747ed16a156748055bf64_JaffaCakes118
- Size
  
  72KB
- MD5
  
  27beecf2efc747ed16a156748055bf64
- SHA1
  
  3257536861b0a6d388b6aa1472b24f5f0557774d
- SHA256
  
  b5cf8cf9fc3fb7ff99e9e8fff11cdce7ab6d8eae8c027de161db494f75982bfe
- SHA512
  
  6cfb09df1684b437b4f0cef0ff91d9b3429ec04c4daa8ef352803cd1d18856112717acabb7db811b93f41785387bee57fc05be139fc2d4d9e8b6bf9bf1e7b338
- SSDEEP
  
  1536:u+nA4KoI5J6gyr2DieSgMGWCt31IvmHuoeIH:u+A41EJ6gyr2WTGP1Io
Score

10^/10

discovery evasion
- Modifies firewall policy service
  evasion
- Drops file in Drivers directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Disable or Modify System Firewall

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

discoveryevasion