General
-
Target
731f51dcfb5d968e90f82457084f2849_JaffaCakes118
-
Size
821KB
-
Sample
240525-y2yzqaha2s
-
MD5
731f51dcfb5d968e90f82457084f2849
-
SHA1
0a06d69c986a21f37310b6b0bc4df8b2e66eca3f
-
SHA256
e033486b4c119f41962837b8b84f91c8d86a3bf6d0b9ce8e5221ef18311f6268
-
SHA512
a2d4dd55efe459ca2c6e092b58d4b2511dd504b82dbc8277c2a78ca8b0709b97832926467008abbbb01aae991e1a8297e987a9750a8ac93aca5dfd1abbf78f36
-
SSDEEP
12288:PFLlJnnbWOtz6sVJhvaz1Qc/WdI//vfM4qwrbkniafLo6vUTyl0w/q9jJZYG:d3nbWmJVJFwSddIXvfhqbiaxvRxq9x
Behavioral task
behavioral1
Sample
731f51dcfb5d968e90f82457084f2849_JaffaCakes118.exe
Resource
win7-20240221-en
Malware Config
Targets
-
-
Target
731f51dcfb5d968e90f82457084f2849_JaffaCakes118
-
Size
821KB
-
MD5
731f51dcfb5d968e90f82457084f2849
-
SHA1
0a06d69c986a21f37310b6b0bc4df8b2e66eca3f
-
SHA256
e033486b4c119f41962837b8b84f91c8d86a3bf6d0b9ce8e5221ef18311f6268
-
SHA512
a2d4dd55efe459ca2c6e092b58d4b2511dd504b82dbc8277c2a78ca8b0709b97832926467008abbbb01aae991e1a8297e987a9750a8ac93aca5dfd1abbf78f36
-
SSDEEP
12288:PFLlJnnbWOtz6sVJhvaz1Qc/WdI//vfM4qwrbkniafLo6vUTyl0w/q9jJZYG:d3nbWmJVJFwSddIXvfhqbiaxvRxq9x
-
Modifies firewall policy service
-
Modifies security service
-
Disables RegEdit via registry modification
-
Disables Task Manager via registry modification
-
Suspicious use of SetThreadContext
-