General
-
Target
e81b3501b8f5972812e93c4a40717467_JaffaCakes118
-
Size
360KB
-
Sample
240408-wxmd1sfh42
-
MD5
e81b3501b8f5972812e93c4a40717467
-
SHA1
17fa72c70ee59efee002a11bfd2180d7d7ed56cb
-
SHA256
7b12b948342e060ed2e44b14a8b97d276aa74d68529039237a92e85bfaf11f20
-
SHA512
bc67dc281b44f2a75f596e5dc4969292f12406b6dfe24751d8d23aa93361ba6fc56ba04d88a3b7744e307cb7ff17ecfc7cf9aa3b0fba9c9c6c6a06d0456970b1
-
SSDEEP
6144:50CUmXw1GYKTTSHnTCg60t76tiMvJ0QvQ0AAwTw8VzJXu:bU7nESHTCgvtWio0Y
Malware Config
Targets
-
-
Target
e81b3501b8f5972812e93c4a40717467_JaffaCakes118
-
Size
360KB
-
MD5
e81b3501b8f5972812e93c4a40717467
-
SHA1
17fa72c70ee59efee002a11bfd2180d7d7ed56cb
-
SHA256
7b12b948342e060ed2e44b14a8b97d276aa74d68529039237a92e85bfaf11f20
-
SHA512
bc67dc281b44f2a75f596e5dc4969292f12406b6dfe24751d8d23aa93361ba6fc56ba04d88a3b7744e307cb7ff17ecfc7cf9aa3b0fba9c9c6c6a06d0456970b1
-
SSDEEP
6144:50CUmXw1GYKTTSHnTCg60t76tiMvJ0QvQ0AAwTw8VzJXu:bU7nESHTCgvtWio0Y
Score10/10-
UAC bypass
-
Windows security bypass
-
Disables taskbar notifications via registry modification
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Windows security modification
-
Checks whether UAC is enabled
-