General
-
Target
a6600bbc94769a3917bd904750eb3419_JaffaCakes118
-
Size
347KB
-
Sample
240613-tea7xszaqm
-
MD5
a6600bbc94769a3917bd904750eb3419
-
SHA1
859af2db53e25db37da6f8331ee59f1e5b81276e
-
SHA256
9c3bb8ebaa6719d2cb7247ae6f093c1a8f7ed7ab1d4877bc7be58d0f734e37d9
-
SHA512
4a36b69b53842dd5490f1f8fbefefc10cc822f4bb3e93e27bb14c86c49220b9469c10fa650f0ecd1d543495857b35839e33fdf6c245df4da6fc319d90dab6dc4
-
SSDEEP
3072:JUgYpTd8fBtpAZc+sixKLs+MadpD5SA/OULWjJJvKVUa27t1C4ScGFiX3d:qTCBL4UAWD5h/OPHyO5hScGFmd
Malware Config
Targets
-
-
Target
a6600bbc94769a3917bd904750eb3419_JaffaCakes118
-
Size
347KB
-
MD5
a6600bbc94769a3917bd904750eb3419
-
SHA1
859af2db53e25db37da6f8331ee59f1e5b81276e
-
SHA256
9c3bb8ebaa6719d2cb7247ae6f093c1a8f7ed7ab1d4877bc7be58d0f734e37d9
-
SHA512
4a36b69b53842dd5490f1f8fbefefc10cc822f4bb3e93e27bb14c86c49220b9469c10fa650f0ecd1d543495857b35839e33fdf6c245df4da6fc319d90dab6dc4
-
SSDEEP
3072:JUgYpTd8fBtpAZc+sixKLs+MadpD5SA/OULWjJJvKVUa27t1C4ScGFiX3d:qTCBL4UAWD5h/OPHyO5hScGFmd
Score10/10-
Modifies Windows Defender Real-time Protection settings
-
Windows security bypass
-
Executes dropped EXE
-
Loads dropped DLL
-
Windows security modification
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Create or Modify System Process
1Windows Service
1