General
-
Target
bbedc940f0ba92319b4aa114d5a9060d_JaffaCakes118
-
Size
865KB
-
Sample
240618-pnf3batbqe
-
MD5
bbedc940f0ba92319b4aa114d5a9060d
-
SHA1
ed3d34ccf3698301021c0970f884f9f483b76316
-
SHA256
51395d1cca11bf84c38ff02eda50339097e0c3f9af062ae8f9c6e791cc346afc
-
SHA512
2b96faed812729d664a0bab8b4d939c7159dfc9193c7e6d136fe9036a7685efa568f4b2e3a0309016bd42d8ff1e274bb7b828e30a05048602f24f4d1701030c1
-
SSDEEP
24576:rYrMa2AnIV1G4nZwndjpmJgkOeesA1CWBlckB6h:Er/6W4CdjpmakOoAJBlMh
Malware Config
Targets
-
-
Target
bbedc940f0ba92319b4aa114d5a9060d_JaffaCakes118
-
Size
865KB
-
MD5
bbedc940f0ba92319b4aa114d5a9060d
-
SHA1
ed3d34ccf3698301021c0970f884f9f483b76316
-
SHA256
51395d1cca11bf84c38ff02eda50339097e0c3f9af062ae8f9c6e791cc346afc
-
SHA512
2b96faed812729d664a0bab8b4d939c7159dfc9193c7e6d136fe9036a7685efa568f4b2e3a0309016bd42d8ff1e274bb7b828e30a05048602f24f4d1701030c1
-
SSDEEP
24576:rYrMa2AnIV1G4nZwndjpmJgkOeesA1CWBlckB6h:Er/6W4CdjpmakOoAJBlMh
Score7/10-
Event Triggered Execution: Component Object Model Hijacking
Adversaries may establish persistence by executing malicious content triggered by hijacked references to Component Object Model (COM) objects.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Checks whether UAC is enabled
-