General
-
Target
33b5a154c8dbfb0ff4b64675af22c308_JaffaCakes118
-
Size
382KB
-
Sample
240710-hhtmwsvcrc
-
MD5
33b5a154c8dbfb0ff4b64675af22c308
-
SHA1
cedbb38a4c096df22c196c44423860b880411eae
-
SHA256
90a23f5209ff8df0377f270b3bfca3fd35cf41a458f2e4064eca4147850552a8
-
SHA512
0d1e3e51c18081b35b2f05c7f508d50079ddca6efc1ecc84727380d558a5e7b32b1fe2dd27cddf771ce2c3d6b0ba23b664c3ad319d7c242030d78a39c083f998
-
SSDEEP
6144:9x5RMc6y4+AGeJKiIdDjky49jypOAEWZqnKET5EIyLjRKg1gXVJiObl:35RMcpAGliLy8hAEWZ+7TSHRKSgFBl
Malware Config
Targets
-
-
Target
33b5a154c8dbfb0ff4b64675af22c308_JaffaCakes118
-
Size
382KB
-
MD5
33b5a154c8dbfb0ff4b64675af22c308
-
SHA1
cedbb38a4c096df22c196c44423860b880411eae
-
SHA256
90a23f5209ff8df0377f270b3bfca3fd35cf41a458f2e4064eca4147850552a8
-
SHA512
0d1e3e51c18081b35b2f05c7f508d50079ddca6efc1ecc84727380d558a5e7b32b1fe2dd27cddf771ce2c3d6b0ba23b664c3ad319d7c242030d78a39c083f998
-
SSDEEP
6144:9x5RMc6y4+AGeJKiIdDjky49jypOAEWZqnKET5EIyLjRKg1gXVJiObl:35RMcpAGliLy8hAEWZ+7TSHRKSgFBl
Score10/10-
UAC bypass
-
Windows security bypass
-
Disables taskbar notifications via registry modification
-
Windows security modification
-
Adds Run key to start application
-
Checks whether UAC is enabled
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1