General
-
Target
36614bd5646c08cd6318a38f68b6cc90_JaffaCakes118
-
Size
40KB
-
Sample
240710-zxqm8azekl
-
MD5
36614bd5646c08cd6318a38f68b6cc90
-
SHA1
4b7681cf2ddbd2502cae3ee58fe167f46adb44a4
-
SHA256
f697072d1cada4d8136e761098e2a7b9c1d76604967cc5397927f1874b833e11
-
SHA512
c54a9fedc05f1bdad6070864d580474d8e367881f884d468ca31182182f1ada1e7b44b28dabb9a83dd32daf47ef4696415e8a9e75c3b5e15526f0e6d6f768d74
-
SSDEEP
384:Yo6DXIkXnmyosyHceJL/kl8IvGQzabMNahWpCFuHPPmMrbsAKP:YjD4kXmydZeJL/kt3ahWQ8PmYbsAKP
Malware Config
Targets
-
-
Target
36614bd5646c08cd6318a38f68b6cc90_JaffaCakes118
-
Size
40KB
-
MD5
36614bd5646c08cd6318a38f68b6cc90
-
SHA1
4b7681cf2ddbd2502cae3ee58fe167f46adb44a4
-
SHA256
f697072d1cada4d8136e761098e2a7b9c1d76604967cc5397927f1874b833e11
-
SHA512
c54a9fedc05f1bdad6070864d580474d8e367881f884d468ca31182182f1ada1e7b44b28dabb9a83dd32daf47ef4696415e8a9e75c3b5e15526f0e6d6f768d74
-
SSDEEP
384:Yo6DXIkXnmyosyHceJL/kl8IvGQzabMNahWpCFuHPPmMrbsAKP:YjD4kXmydZeJL/kt3ahWQ8PmYbsAKP
Score8/10-
Boot or Logon Autostart Execution: Active Setup
Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
-
Deletes itself
-
Drops file in System32 directory
-