General
-
Target
5ef2a8213f6b8b25c4760e2b7d9d22e1_JaffaCakes118
-
Size
121KB
-
Sample
240720-ej7pcsyfmh
-
MD5
5ef2a8213f6b8b25c4760e2b7d9d22e1
-
SHA1
3f56fb0ad5012b8dc8ed2d13b6ee8f890d281dc8
-
SHA256
f886c3ffd547b36e548b0d3fd8e2490a336543cafe99f7b7303f5e7bfd5e67a0
-
SHA512
b9367bb10eafd9eafc1a67a00940620d7ccdc6a88a96be8454162457f840c4e4986807657d46db11c05e18e446c6d7753ba1fa7f64fa070b9c1c0bf6002c7525
-
SSDEEP
3072:i2ATxPIZlQ80ceLfF4NBXlc3XtZIDeYhoutjZbG3:MdPqu5sXlcNAboSV
Malware Config
Targets
-
-
Target
5ef2a8213f6b8b25c4760e2b7d9d22e1_JaffaCakes118
-
Size
121KB
-
MD5
5ef2a8213f6b8b25c4760e2b7d9d22e1
-
SHA1
3f56fb0ad5012b8dc8ed2d13b6ee8f890d281dc8
-
SHA256
f886c3ffd547b36e548b0d3fd8e2490a336543cafe99f7b7303f5e7bfd5e67a0
-
SHA512
b9367bb10eafd9eafc1a67a00940620d7ccdc6a88a96be8454162457f840c4e4986807657d46db11c05e18e446c6d7753ba1fa7f64fa070b9c1c0bf6002c7525
-
SSDEEP
3072:i2ATxPIZlQ80ceLfF4NBXlc3XtZIDeYhoutjZbG3:MdPqu5sXlcNAboSV
Score8/10-
Modifies Windows Firewall
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1