General
-
Target
5efae32c104ec81e919a9258efdd63cc_JaffaCakes118
-
Size
365KB
-
Sample
240720-er63sszaja
-
MD5
5efae32c104ec81e919a9258efdd63cc
-
SHA1
fd510c52a98ce739d1b54af11b273d99dc22237f
-
SHA256
71846c2e311e3405141d608fe6d491708a94e4ddacc36de43f4a815ae985e074
-
SHA512
c276f38bc8c4d791c7464e76603c8cc4c5ad5a4580cef6783c4cb70dc72dcf8e6eb90ddcfe529269ed3bf588f865ad825f587d570c1be7297e2e27a82bf87d25
-
SSDEEP
6144:oH3JRMya4hib4j8jf51Qx7O6bcLehsEwkoK/6ERdFQJdlMu6lb/01apjbV6m8lL:oH5RM9x4ojf51aTcK0NEQUd0op3QlL
Malware Config
Targets
-
-
Target
5efae32c104ec81e919a9258efdd63cc_JaffaCakes118
-
Size
365KB
-
MD5
5efae32c104ec81e919a9258efdd63cc
-
SHA1
fd510c52a98ce739d1b54af11b273d99dc22237f
-
SHA256
71846c2e311e3405141d608fe6d491708a94e4ddacc36de43f4a815ae985e074
-
SHA512
c276f38bc8c4d791c7464e76603c8cc4c5ad5a4580cef6783c4cb70dc72dcf8e6eb90ddcfe529269ed3bf588f865ad825f587d570c1be7297e2e27a82bf87d25
-
SSDEEP
6144:oH3JRMya4hib4j8jf51Qx7O6bcLehsEwkoK/6ERdFQJdlMu6lb/01apjbV6m8lL:oH5RM9x4ojf51aTcK0NEQUd0op3QlL
Score10/10-
UAC bypass
-
Windows security bypass
-
Disables taskbar notifications via registry modification
-
Windows security modification
-
Adds Run key to start application
-
Checks whether UAC is enabled
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1