General
-
Target
34773a3bf8af2ff8f8287ff69e85c324_JaffaCakes118
-
Size
948KB
-
Sample
240710-m8jmtsthpr
-
MD5
34773a3bf8af2ff8f8287ff69e85c324
-
SHA1
86ceb898e28cdb41d045021185e11c668a996bd8
-
SHA256
3a2210ad633826725be9c117c457e2e8e3412e5239ed3c4cb553ea4c0a395720
-
SHA512
e3562164b306b0611637e1a5d59531b9f428fc6f7cc530d333f6b461da872a04c88dc12d290e6c8f5187b441e261da2f564fae9532b67147bb64101a5fba1207
-
SSDEEP
24576:aWdqE9Z1KhGep0m2Iz1HSLM22NC6QG63ENJA:aW4iaFpZeMHNCjP3
Malware Config
Targets
-
-
Target
34773a3bf8af2ff8f8287ff69e85c324_JaffaCakes118
-
Size
948KB
-
MD5
34773a3bf8af2ff8f8287ff69e85c324
-
SHA1
86ceb898e28cdb41d045021185e11c668a996bd8
-
SHA256
3a2210ad633826725be9c117c457e2e8e3412e5239ed3c4cb553ea4c0a395720
-
SHA512
e3562164b306b0611637e1a5d59531b9f428fc6f7cc530d333f6b461da872a04c88dc12d290e6c8f5187b441e261da2f564fae9532b67147bb64101a5fba1207
-
SSDEEP
24576:aWdqE9Z1KhGep0m2Iz1HSLM22NC6QG63ENJA:aW4iaFpZeMHNCjP3
Score8/10-
Modifies Windows Firewall
-
Adds Run key to start application
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1