General
-
Target
b6155ac3e79fa7d706d83452636db4a0_JaffaCakes118
-
Size
595KB
-
Sample
240617-bdtnrs1djk
-
MD5
b6155ac3e79fa7d706d83452636db4a0
-
SHA1
a2116a66e22f7a6085e9347ca15d0f2b262e973d
-
SHA256
be063a62bd1f1b9d4adcc3142d623ca8b3aa211b4451faf0d5ccb13cd13ce9be
-
SHA512
4f7a8526021c21148ff431b0fc44d2c95d708b4e6edce86467752d3c1ee218c6fc56daf624f6e8cf21b2e4914593a069a247354691a031e6da17632c5c01a200
-
SSDEEP
6144:UZfec9EbXDk6RkdKJrG1VVE+IwrG1VVE+ItuHOGrG1VVE+IwrG1VVE+IP/UOPSeI:UZWtI6RkcunuVO6unutOB0H
Malware Config
Targets
-
-
Target
b6155ac3e79fa7d706d83452636db4a0_JaffaCakes118
-
Size
595KB
-
MD5
b6155ac3e79fa7d706d83452636db4a0
-
SHA1
a2116a66e22f7a6085e9347ca15d0f2b262e973d
-
SHA256
be063a62bd1f1b9d4adcc3142d623ca8b3aa211b4451faf0d5ccb13cd13ce9be
-
SHA512
4f7a8526021c21148ff431b0fc44d2c95d708b4e6edce86467752d3c1ee218c6fc56daf624f6e8cf21b2e4914593a069a247354691a031e6da17632c5c01a200
-
SSDEEP
6144:UZfec9EbXDk6RkdKJrG1VVE+IwrG1VVE+ItuHOGrG1VVE+IwrG1VVE+IP/UOPSeI:UZWtI6RkcunuVO6unutOB0H
Score10/10-
Disables service(s)
-
Modifies visibility of file extensions in Explorer
-
Blocks application from running via registry modification
Adds application to list of disallowed applications.
-
Sets file execution options in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Create or Modify System Process
1Windows Service
1Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Create or Modify System Process
1Windows Service
1