General
-
Target
022392e5a18655eb36d27f34a0bf3366_JaffaCakes118
-
Size
1.0MB
-
Sample
240427-b79bbage89
-
MD5
022392e5a18655eb36d27f34a0bf3366
-
SHA1
5853d671be7fdb81d29cdf7c8ef67e4879adf972
-
SHA256
413d437af5e6401d2585907578e5f69b14f34172e1f0a734aebeb85d76038669
-
SHA512
eba2cf8d70c4293ece11bf4a3387b4c036a224e01a4a268de153b4210ec31345b55e18f05ce50b52799fd447ce1298eced4fb56cd2dac5c01d1cdf30ed85296b
-
SSDEEP
24576:Ktuv1am/ddzGsb/KmeYUIRllpwpGZu6rg8o1cNXQ9rGzYgkMJQYg:zvP/7iM/KmeYUIDIGZu6rg8kqmMO
Static task
static1
Behavioral task
behavioral1
Sample
022392e5a18655eb36d27f34a0bf3366_JaffaCakes118.exe
Resource
win7-20240215-en
Malware Config
Targets
-
-
Target
022392e5a18655eb36d27f34a0bf3366_JaffaCakes118
-
Size
1.0MB
-
MD5
022392e5a18655eb36d27f34a0bf3366
-
SHA1
5853d671be7fdb81d29cdf7c8ef67e4879adf972
-
SHA256
413d437af5e6401d2585907578e5f69b14f34172e1f0a734aebeb85d76038669
-
SHA512
eba2cf8d70c4293ece11bf4a3387b4c036a224e01a4a268de153b4210ec31345b55e18f05ce50b52799fd447ce1298eced4fb56cd2dac5c01d1cdf30ed85296b
-
SSDEEP
24576:Ktuv1am/ddzGsb/KmeYUIRllpwpGZu6rg8o1cNXQ9rGzYgkMJQYg:zvP/7iM/KmeYUIDIGZu6rg8kqmMO
-
Identifies Wine through registry keys
Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-
MITRE ATT&CK Matrix ATT&CK v13
Privilege Escalation
Abuse Elevation Control Mechanism
1Bypass User Account Control
1