General

  • Target

    00124cbff180e0640081873205a66a24_JaffaCakes118

  • Size

    11KB

  • Sample

    240619-xpawpaxcng

  • MD5

    00124cbff180e0640081873205a66a24

  • SHA1

    3d8eb8e4c0a2ced0455896a26f4c900d8d240e5b

  • SHA256

    02cb9884a407d379900639c4ab4354d91236ffcfcbc880674c04e722ea9c8156

  • SHA512

    2f4d34bcbdf85973ae6d55a7e98cefb60be7f027d46b9710407273a0a411003826367e488d3b582afc0973fb86ab96d1fa9a925a14fc265d4d5276d704480a19

  • SSDEEP

    192:GqkEe+6fMrf+X8OKfBzmDNevAihpAwIBsE2L4f3KoTdy68+QWqT:GzEQMrlQDNNi2+fL6Ko46KT

Malware Config

Targets

    • Target

      00124cbff180e0640081873205a66a24_JaffaCakes118

    • Size

      11KB

    • MD5

      00124cbff180e0640081873205a66a24

    • SHA1

      3d8eb8e4c0a2ced0455896a26f4c900d8d240e5b

    • SHA256

      02cb9884a407d379900639c4ab4354d91236ffcfcbc880674c04e722ea9c8156

    • SHA512

      2f4d34bcbdf85973ae6d55a7e98cefb60be7f027d46b9710407273a0a411003826367e488d3b582afc0973fb86ab96d1fa9a925a14fc265d4d5276d704480a19

    • SSDEEP

      192:GqkEe+6fMrf+X8OKfBzmDNevAihpAwIBsE2L4f3KoTdy68+QWqT:GzEQMrlQDNNi2+fL6Ko46KT

    • Disables Task Manager via registry modification

    • Modifies Windows Firewall

    • Adds Run key to start application

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks