General
-
Target
865f37bbbd98c299908727d68ccd8a68_JaffaCakes118
-
Size
200KB
-
Sample
240810-rjg5xssgmm
-
MD5
865f37bbbd98c299908727d68ccd8a68
-
SHA1
d982c4b8ac06cdee20c6df43385524456adb6a6e
-
SHA256
52517d8ce45dffa2f5b20e560e3119f0bb95a02d730b8d00052b171bde248819
-
SHA512
7fe2f95ceb2bfeb21bdd03f4bf13585805ac8af440c2f2291bf90c75c13fb6de17c515fba4e18e8d9754d44bd116f74e7cfbd2499c7eebb4e7862930d89cfa33
-
SSDEEP
6144:LEDxE87O4a/DvVqfISvnvUjJGPhLGXD3aO5g1b:2e81Av7SvnvyJDXD3aO5g1b
Malware Config
Targets
-
-
Target
865f37bbbd98c299908727d68ccd8a68_JaffaCakes118
-
Size
200KB
-
MD5
865f37bbbd98c299908727d68ccd8a68
-
SHA1
d982c4b8ac06cdee20c6df43385524456adb6a6e
-
SHA256
52517d8ce45dffa2f5b20e560e3119f0bb95a02d730b8d00052b171bde248819
-
SHA512
7fe2f95ceb2bfeb21bdd03f4bf13585805ac8af440c2f2291bf90c75c13fb6de17c515fba4e18e8d9754d44bd116f74e7cfbd2499c7eebb4e7862930d89cfa33
-
SSDEEP
6144:LEDxE87O4a/DvVqfISvnvUjJGPhLGXD3aO5g1b:2e81Av7SvnvyJDXD3aO5g1b
Score8/10-
Modifies Windows Firewall
-
Drops startup file
-
Executes dropped EXE
-
Loads dropped DLL
-
Checks whether UAC is enabled
-
MITRE ATT&CK Enterprise v15
Persistence
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1Privilege Escalation
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1Defense Evasion
Impair Defenses
1Disable or Modify System Firewall
1Modify Registry
1Subvert Trust Controls
1Install Root Certificate
1