General
-
Target
0e630b7ee13f97ffc2ee0ba936530cfe_JaffaCakes118
-
Size
120KB
-
Sample
240625-rl5c8svcpf
-
MD5
0e630b7ee13f97ffc2ee0ba936530cfe
-
SHA1
44a555481f66973babbd893fdd9952c4521c12d9
-
SHA256
a8215680817c73724c365470ab8aa1db013fd8073d3a0f3b5a8069dad2d548f6
-
SHA512
27e9846bb2217a660ab5dde5e2bae8fc2cbc0b4e4b034b8fb18105e2682de6dc7414cced5a3d4ff9b12ff6b37c9719fe1f64375efe480b3878267104e007afef
-
SSDEEP
3072:hDkBYorfRWFYvFIsaJ26SIhYAdPUAYrTJY0MvK9:5koudCwJ8PUA020x
Static task
static1
Behavioral task
behavioral1
Sample
0e630b7ee13f97ffc2ee0ba936530cfe_JaffaCakes118.exe
Resource
win7-20240611-en
Malware Config
Extracted
sality
http://89.119.67.154/testo5/
http://kukutrustnet777.info/home.gif
http://kukutrustnet888.info/home.gif
http://kukutrustnet987.info/home.gif
http://www.klkjwre9fqwieluoi.info/
http://kukutrustnet777888.info/
Targets
-
-
Target
0e630b7ee13f97ffc2ee0ba936530cfe_JaffaCakes118
-
Size
120KB
-
MD5
0e630b7ee13f97ffc2ee0ba936530cfe
-
SHA1
44a555481f66973babbd893fdd9952c4521c12d9
-
SHA256
a8215680817c73724c365470ab8aa1db013fd8073d3a0f3b5a8069dad2d548f6
-
SHA512
27e9846bb2217a660ab5dde5e2bae8fc2cbc0b4e4b034b8fb18105e2682de6dc7414cced5a3d4ff9b12ff6b37c9719fe1f64375efe480b3878267104e007afef
-
SSDEEP
3072:hDkBYorfRWFYvFIsaJ26SIhYAdPUAYrTJY0MvK9:5koudCwJ8PUA020x
-
Modifies firewall policy service
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Create or Modify System Process
1Windows Service
1