df06048421dcd99d85ad6efb6e29eed93c16679ad6e914beaa9304350082501a | Triage

Sharing

General

Target

be4a164bee8070c86efc43a7e4668b11_JaffaCakes118
Size

736KB
Sample

241203-t7c7zsyrbj
MD5

be4a164bee8070c86efc43a7e4668b11
SHA1

5654a21db4c18d8b17397888a4137b94ac9a4d04
SHA256

df06048421dcd99d85ad6efb6e29eed93c16679ad6e914beaa9304350082501a
SHA512

3ebc3bb5463001d9f37256d18c6ccd34d1bd75a3dacd5e126782436775ab19ed9be404e6ab2553716e75e53b993652f1702bb7c3e42e30b8886da0908f256f02
SSDEEP

12288:/UuB26ELqY/CxCPTtrzoTA8nHUvDaWuRh7q5WgYcyzu2oh/ySnkIQZsSKKffr://8tqY/CxCrdGtHRh7ef2oh6rIgspED

Score

10^/10

discovery evasion

Malware Config

Targets

- Target
  
  be4a164bee8070c86efc43a7e4668b11_JaffaCakes118
- Size
  
  736KB
- MD5
  
  be4a164bee8070c86efc43a7e4668b11
- SHA1
  
  5654a21db4c18d8b17397888a4137b94ac9a4d04
- SHA256
  
  df06048421dcd99d85ad6efb6e29eed93c16679ad6e914beaa9304350082501a
- SHA512
  
  3ebc3bb5463001d9f37256d18c6ccd34d1bd75a3dacd5e126782436775ab19ed9be404e6ab2553716e75e53b993652f1702bb7c3e42e30b8886da0908f256f02
- SSDEEP
  
  12288:/UuB26ELqY/CxCPTtrzoTA8nHUvDaWuRh7q5WgYcyzu2oh/ySnkIQZsSKKffr://8tqY/CxCrdGtHRh7ef2oh6rIgspED
Score

10^/10

discovery evasion
- Modifies firewall policy service
  evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Create or Modify System Process

Windows Service

Privilege Escalation

Create or Modify System Process

Windows Service

Defense Evasion

Impair Defenses

Disable or Modify System Firewall

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasion

behavioral2

discoveryevasion