General
-
Target
22f8a550d0a4c3d1bd13878152c0c070_JaffaCakes118
-
Size
40KB
-
Sample
240703-th9vnaxhjp
-
MD5
22f8a550d0a4c3d1bd13878152c0c070
-
SHA1
952cd2133d429e9775fd023ed311da7812ef954a
-
SHA256
ed2e9aafde33e6f85c93908b78ba8a794ec52cde0b1caf15795bc6c4113ca292
-
SHA512
43e102adfe297924dc9f6a65adeca87616a0774da099552c8d40e6d9c67f794c5c7cecee2e3f62b77d0c6357ec3bd8cca75a18422d1fb19273079c5289e558b8
-
SSDEEP
768:xOSR67hDeOkjbMNwqajt1oumXPHrDWGle/oJfNnD2D6zq+sMhftP:FR61en3MNwqajroBDWGlBfNiD6z5FhZ
Malware Config
Targets
-
-
Target
22f8a550d0a4c3d1bd13878152c0c070_JaffaCakes118
-
Size
40KB
-
MD5
22f8a550d0a4c3d1bd13878152c0c070
-
SHA1
952cd2133d429e9775fd023ed311da7812ef954a
-
SHA256
ed2e9aafde33e6f85c93908b78ba8a794ec52cde0b1caf15795bc6c4113ca292
-
SHA512
43e102adfe297924dc9f6a65adeca87616a0774da099552c8d40e6d9c67f794c5c7cecee2e3f62b77d0c6357ec3bd8cca75a18422d1fb19273079c5289e558b8
-
SSDEEP
768:xOSR67hDeOkjbMNwqajt1oumXPHrDWGle/oJfNnD2D6zq+sMhftP:FR61en3MNwqajroBDWGlBfNiD6z5FhZ
Score10/10-
Modifies security service
-
Windows security bypass
-
Deletes itself
-
Executes dropped EXE
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Windows security modification
-
Drops file in System32 directory
-