General
-
Target
4783ad3e5c7dbf82e7a6c16c2dfd07ad_JaffaCakes118
-
Size
1.9MB
-
Sample
240715-a691sazglm
-
MD5
4783ad3e5c7dbf82e7a6c16c2dfd07ad
-
SHA1
cba5ed871f76ef96486492b6a6d46a1b95af1471
-
SHA256
6ad493e00a4000d5a435ae6baf7ea3a7857f3cb44aa8cd912cf3b45c32f51ac7
-
SHA512
84074ac60a04ccb6e74d767033b18cd388784bff77bf853a022f67f1c3c53f62a58f41de82543056c95e136cfbbccd0ecf07411d77e4be636d7dfa3aec4441f9
-
SSDEEP
49152:ofLtxlzvBV2Ag/96v7fD+dHANE8i1JFCGLvEcTIMMdY17T:uxLV2Ag/Uv7fDPNERUQvx/yY1f
Malware Config
Targets
-
-
Target
4783ad3e5c7dbf82e7a6c16c2dfd07ad_JaffaCakes118
-
Size
1.9MB
-
MD5
4783ad3e5c7dbf82e7a6c16c2dfd07ad
-
SHA1
cba5ed871f76ef96486492b6a6d46a1b95af1471
-
SHA256
6ad493e00a4000d5a435ae6baf7ea3a7857f3cb44aa8cd912cf3b45c32f51ac7
-
SHA512
84074ac60a04ccb6e74d767033b18cd388784bff77bf853a022f67f1c3c53f62a58f41de82543056c95e136cfbbccd0ecf07411d77e4be636d7dfa3aec4441f9
-
SSDEEP
49152:ofLtxlzvBV2Ag/96v7fD+dHANE8i1JFCGLvEcTIMMdY17T:uxLV2Ag/Uv7fDPNERUQvx/yY1f
Score10/10-
Modifies WinLogon for persistence
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-