General
-
Target
856f37b66548f9b13fe3cc519028edc2_JaffaCakes118
-
Size
102KB
-
Sample
240810-kgd7xswhme
-
MD5
856f37b66548f9b13fe3cc519028edc2
-
SHA1
5c0cf650461f16319f44656b9d322f6f60443fef
-
SHA256
b820e0788f2afc001ba80ba7b27f5fae7c5f3f67aa4d2a9de5c08d40969f00e6
-
SHA512
d25b3a2571ee2b8f20be8098f7a6f2aa22113039b3be6d96079b432a7fa0e64e02564ff2d7b6e95279bb1299dc444767dcf2d36d8c345003217271135f113a51
-
SSDEEP
3072:Oni53sWSyd2X1pivnYjJiYATxkBdJMFGCpRN:j3sDU2XjiwjJiYASBdqFGCPN
Malware Config
Targets
-
-
Target
856f37b66548f9b13fe3cc519028edc2_JaffaCakes118
-
Size
102KB
-
MD5
856f37b66548f9b13fe3cc519028edc2
-
SHA1
5c0cf650461f16319f44656b9d322f6f60443fef
-
SHA256
b820e0788f2afc001ba80ba7b27f5fae7c5f3f67aa4d2a9de5c08d40969f00e6
-
SHA512
d25b3a2571ee2b8f20be8098f7a6f2aa22113039b3be6d96079b432a7fa0e64e02564ff2d7b6e95279bb1299dc444767dcf2d36d8c345003217271135f113a51
-
SSDEEP
3072:Oni53sWSyd2X1pivnYjJiYATxkBdJMFGCpRN:j3sDU2XjiwjJiYASBdqFGCPN
Score10/10-
Modifies firewall policy service
-
Drops file in Drivers directory
-
Loads dropped DLL
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Adds Run key to start application
-
Drops desktop.ini file(s)
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Create or Modify System Process
1Windows Service
1Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Create or Modify System Process
1Windows Service
1