General

  • Target

    a5cc3224e97c692c89d32ebb367c0ce8_JaffaCakes118

  • Size

    877KB

  • Sample

    240613-qscq5a1bng

  • MD5

    a5cc3224e97c692c89d32ebb367c0ce8

  • SHA1

    e20b8a80409c5dad7ccf048baae5b139a98aad94

  • SHA256

    0381150e524f57c5de32cfc613bd1110feb0465ef38afe39d472b54b59016590

  • SHA512

    dd7a2715cd026c2fac0a50ed0c0c24595f20b9d1d70a038c2198300b5f8786af5502062f68516a307de77a9720e8af25fdadc2b352113a525c010a68a7654bf2

  • SSDEEP

    24576:/srRV9SW3L8aWXPL+tOBi6ono81OD5Txebk0C5:/eVxI/PatB6oolDTr5

Malware Config

Targets

    • Target

      a5cc3224e97c692c89d32ebb367c0ce8_JaffaCakes118

    • Size

      877KB

    • MD5

      a5cc3224e97c692c89d32ebb367c0ce8

    • SHA1

      e20b8a80409c5dad7ccf048baae5b139a98aad94

    • SHA256

      0381150e524f57c5de32cfc613bd1110feb0465ef38afe39d472b54b59016590

    • SHA512

      dd7a2715cd026c2fac0a50ed0c0c24595f20b9d1d70a038c2198300b5f8786af5502062f68516a307de77a9720e8af25fdadc2b352113a525c010a68a7654bf2

    • SSDEEP

      24576:/srRV9SW3L8aWXPL+tOBi6ono81OD5Txebk0C5:/eVxI/PatB6oolDTr5

    • Registers COM server for autorun

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Checks whether UAC is enabled

MITRE ATT&CK Matrix ATT&CK v13

Persistence

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Privilege Escalation

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Defense Evasion

Modify Registry

1
T1112

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Tasks