General
-
Target
69d79bfa3e909d34c8f30deab7683fe4_JaffaCakes118
-
Size
255KB
-
Sample
240523-fvznkaeh29
-
MD5
69d79bfa3e909d34c8f30deab7683fe4
-
SHA1
ff06f8e29dd9941037f22986edb08d883c5bd695
-
SHA256
17c51c73c265f45369b5e11280c1576858f812058807f3ba5bf33dd5ab5ac16c
-
SHA512
672d56c706603d161122792427a6056732929f0b672f7a64d4924b3e58eef10386b5c07f0a76ad837a72b967e351ee1781721222cfe7d0cfd37e7031edcd7913
-
SSDEEP
3072:M+8CQXgRP//w+Z7T9aVmE6dNp/MWE2wJmeLlgHrj:M/XgRfwLZQ/LwMfj
Malware Config
Targets
-
-
Target
69d79bfa3e909d34c8f30deab7683fe4_JaffaCakes118
-
Size
255KB
-
MD5
69d79bfa3e909d34c8f30deab7683fe4
-
SHA1
ff06f8e29dd9941037f22986edb08d883c5bd695
-
SHA256
17c51c73c265f45369b5e11280c1576858f812058807f3ba5bf33dd5ab5ac16c
-
SHA512
672d56c706603d161122792427a6056732929f0b672f7a64d4924b3e58eef10386b5c07f0a76ad837a72b967e351ee1781721222cfe7d0cfd37e7031edcd7913
-
SSDEEP
3072:M+8CQXgRP//w+Z7T9aVmE6dNp/MWE2wJmeLlgHrj:M/XgRfwLZQ/LwMfj
Score10/10-
Modifies Windows Defender Real-time Protection settings
-
Windows security bypass
-
Executes dropped EXE
-
Loads dropped DLL
-
Windows security modification
-
Adds Run key to start application
-
MITRE ATT&CK Matrix ATT&CK v13
Persistence
Create or Modify System Process
1Windows Service
1Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1