General
-
Target
3037588eebe0ef7a8ba9b6d370913d71_JaffaCakes118
-
Size
254KB
-
Sample
240510-vzl1lagh3x
-
MD5
3037588eebe0ef7a8ba9b6d370913d71
-
SHA1
150558e7588939ea24a5a3d2d48803ab745ae746
-
SHA256
cba4bd04fb347b98cd02e0a4f7dc99cf53b3888a86ba44e8c9995dd1c73738e9
-
SHA512
4d1676de035d23d0272a5dc62f412af658a30c1f8c8826778b32acf26932c1ab12125fbb30a94aaf9f63744a585289e674e3b177587807872e7efecc9c5c89ab
-
SSDEEP
6144:UzSA5+evPv5IZEU8FZ+k73biRBhh/mAlTBP1b:U1PSOnFQe3bUh5mmHb
Malware Config
Targets
-
-
Target
3037588eebe0ef7a8ba9b6d370913d71_JaffaCakes118
-
Size
254KB
-
MD5
3037588eebe0ef7a8ba9b6d370913d71
-
SHA1
150558e7588939ea24a5a3d2d48803ab745ae746
-
SHA256
cba4bd04fb347b98cd02e0a4f7dc99cf53b3888a86ba44e8c9995dd1c73738e9
-
SHA512
4d1676de035d23d0272a5dc62f412af658a30c1f8c8826778b32acf26932c1ab12125fbb30a94aaf9f63744a585289e674e3b177587807872e7efecc9c5c89ab
-
SSDEEP
6144:UzSA5+evPv5IZEU8FZ+k73biRBhh/mAlTBP1b:U1PSOnFQe3bUh5mmHb
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
UAC bypass
-
Adds policy Run key to start application
-
Disables taskbar notifications via registry modification
-
Deletes itself
-
Blocklisted process makes network request
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1