Overview

overview

10

Static

static

3

26c6d6cac1...18.exe

windows7-x64

1

26c6d6cac1...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    26c6d6cac10d213f795037d7ce9740f0_JaffaCakes118

  • Size

    107KB

  • Sample

    240705-jwr7naxele

  • MD5

    26c6d6cac10d213f795037d7ce9740f0

  • SHA1

    7f0f60a9097a2507bdce75864c6ad9c24b489607

  • SHA256

    0d6134bee4293a73683df66f3201110097d79ae9509c6de78f3245375b995942

  • SHA512

    2f68f177935fe25fbd2b76a198c2e12a5a6c2cfffcfe60e4fdac2b26113d33fa4cbed592d5a4d318cccebef3ad814e424c70afcd0aadafc8854604b2534e9ab3

  • SSDEEP

    1536:6MOtREC/rMcgEPJV+G57ThjEC0kzJP+V5JFxmQ/vOE5Q67Nnr:kzECTMpuDhjRVJGPxmQ3LGW

Score
10/10
evasion

Malware Config

Targets

    • Target

      26c6d6cac10d213f795037d7ce9740f0_JaffaCakes118

    • Size

      107KB

    • MD5

      26c6d6cac10d213f795037d7ce9740f0

    • SHA1

      7f0f60a9097a2507bdce75864c6ad9c24b489607

    • SHA256

      0d6134bee4293a73683df66f3201110097d79ae9509c6de78f3245375b995942

    • SHA512

      2f68f177935fe25fbd2b76a198c2e12a5a6c2cfffcfe60e4fdac2b26113d33fa4cbed592d5a4d318cccebef3ad814e424c70afcd0aadafc8854604b2534e9ab3

    • SSDEEP

      1536:6MOtREC/rMcgEPJV+G57ThjEC0kzJP+V5JFxmQ/vOE5Q67Nnr:kzECTMpuDhjRVJGPxmQ3LGW

    Score
    10/10
    evasion

    • Modifies firewall policy service

      evasion
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Create or Modify System Process

1
T1543

Windows Service

1
T1543.003

Privilege Escalation

Create or Modify System Process

1
T1543

Windows Service

1
T1543.003

Defense Evasion

Modify Registry

1
T1112

Impair Defenses

1
T1562

Disable or Modify System Firewall

1
T1562.004

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks