General
-
Target
685cb90a9bdb6bcefae728476c6c59e8_JaffaCakes118
-
Size
392KB
-
Sample
240723-t5wasascnc
-
MD5
685cb90a9bdb6bcefae728476c6c59e8
-
SHA1
494e5140309d344b0f0d002396c8b965538cf2b2
-
SHA256
4bc66d1c294f41338d9ea735d740f19cee4dba4a0ef9a0044d1c79efe4730bd1
-
SHA512
c49a15f10f78ac2f3f2a0ff871182d0538624c3bf49fa593d990110279cade307e676c08149fc4449b692b9a654eae09d5edfdb20336e02fb076f50696fe3e45
-
SSDEEP
12288:jGGmLdw5YRXnFb4iiXJo/VqiGFIG2oNwcTMhv:jGGEdwORVb4iiX2tzGyG2oXMZ
Malware Config
Targets
-
-
Target
685cb90a9bdb6bcefae728476c6c59e8_JaffaCakes118
-
Size
392KB
-
MD5
685cb90a9bdb6bcefae728476c6c59e8
-
SHA1
494e5140309d344b0f0d002396c8b965538cf2b2
-
SHA256
4bc66d1c294f41338d9ea735d740f19cee4dba4a0ef9a0044d1c79efe4730bd1
-
SHA512
c49a15f10f78ac2f3f2a0ff871182d0538624c3bf49fa593d990110279cade307e676c08149fc4449b692b9a654eae09d5edfdb20336e02fb076f50696fe3e45
-
SSDEEP
12288:jGGmLdw5YRXnFb4iiXJo/VqiGFIG2oNwcTMhv:jGGEdwORVb4iiX2tzGyG2oXMZ
Score10/10-
Windows security bypass
-
Disables taskbar notifications via registry modification
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Windows security modification
-
Adds Run key to start application
-