General
-
Target
107763a9b0de3943bc570db6102fc5ac_JaffaCakes118
-
Size
493KB
-
Sample
240626-c89h5stakj
-
MD5
107763a9b0de3943bc570db6102fc5ac
-
SHA1
ed180ad791213b1329fac8b05a0136b8803ce350
-
SHA256
1209a7e6d009b8ad00359ec2ae9633199a2395e6f53a8e58413c800369ec075d
-
SHA512
b5755c51c653a163223ff3475c4ac733a760079a6541ee3f3f630d476d78ea83af7be3a2f0a2bbff72d043b27133f00975d4df57f8278125eeb241993e7e32ac
-
SSDEEP
12288:hziug/bEWypRiRLC6mlNveDuUltHocOmf:hrQbFRG1nvGH7T
Static task
static1
Behavioral task
behavioral1
Sample
107763a9b0de3943bc570db6102fc5ac_JaffaCakes118.exe
Resource
win7-20240611-en
Malware Config
Extracted
sality
http://89.119.67.154/testo5/
http://kukutrustnet777.info/home.gif
http://kukutrustnet888.info/home.gif
http://kukutrustnet987.info/home.gif
http://www.klkjwre9fqwieluoi.info/
http://kukutrustnet777888.info/
Targets
-
-
Target
107763a9b0de3943bc570db6102fc5ac_JaffaCakes118
-
Size
493KB
-
MD5
107763a9b0de3943bc570db6102fc5ac
-
SHA1
ed180ad791213b1329fac8b05a0136b8803ce350
-
SHA256
1209a7e6d009b8ad00359ec2ae9633199a2395e6f53a8e58413c800369ec075d
-
SHA512
b5755c51c653a163223ff3475c4ac733a760079a6541ee3f3f630d476d78ea83af7be3a2f0a2bbff72d043b27133f00975d4df57f8278125eeb241993e7e32ac
-
SSDEEP
12288:hziug/bEWypRiRLC6mlNveDuUltHocOmf:hrQbFRG1nvGH7T
-
Modifies firewall policy service
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Create or Modify System Process
1Windows Service
1