Analysis
-
max time kernel
121s -
max time network
122s -
platform
windows7_x64 -
resource
win7-20240708-en -
resource tags
-
submitted
10-07-2024 21:10
General
-
Target
366538a418a4c36e9f6a4d2193fa4bc7_JaffaCakes118.exe
-
Size
145KB
-
MD5
366538a418a4c36e9f6a4d2193fa4bc7
-
SHA1
87a4ab452f3fe3b1815bbaaa44538cc375b32a31
-
SHA256
9fcc3df66029190af08c07d9f6ee6a3707bb84c8d727579f402b9fdce791e808
-
SHA512
5848ceb8240ae3ad34c797fa0f6f591104c0a043393e8287a2c184b2695acbb863d8ba4c1306878f652571f6378514e4d305bfc11b2c3b78901991a90fdfcbce
-
SSDEEP
3072:UOxtKfasWVDVrlGlEkfjLk1SebGQQeKNYydadMMDd/HbqoutHB77777J77c77c7s:UOzKLMVr8LfjWbG+ZMgdeoSHB77777Jw
Score
10/10
Malware Config
Signatures
-
UAC bypass 3 TTPs 1 IoCs
-
Windows security bypass 2 TTPs 1 IoCs
-
UPX packed file 2 IoCs
Detects executables packed with UPX/modified UPX open source packer.
-
Windows security modification 2 TTPs 1 IoCs
-
Checks whether UAC is enabled 1 TTPs 1 IoCs
-
System policy modification 1 TTPs 2 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\366538a418a4c36e9f6a4d2193fa4bc7_JaffaCakes118.exe"C:\Users\Admin\AppData\Local\Temp\366538a418a4c36e9f6a4d2193fa4bc7_JaffaCakes118.exe"1⤵
- UAC bypass
- Windows security bypass
- Windows security modification
- Checks whether UAC is enabled
- System policy modification
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
420KB
-
Filesize
4KB
-
Filesize
420KB