General
-
Target
8c9acb89f44abb5641c2d86ee41bec0a_JaffaCakes118
-
Size
28KB
-
Sample
240812-atnxsa1cqa
-
MD5
8c9acb89f44abb5641c2d86ee41bec0a
-
SHA1
ec7c8481a5566ffb57f12be8c50fc087594ec924
-
SHA256
2db1acf9d2128a9b9b48b04a707f7c40ce15ad9d309803f3e1b9e4ac0cfda790
-
SHA512
bf4b182847691434827fc8c8eaa389b50a32af491586e13333a124c3053498f23f681e585d3706ed39e3d1346c85e0a06bb2d8c7ab9f2d64fca7746894c70afa
-
SSDEEP
384:/xA2OFb3GXldJERr3P1gg/L9Risn/a60TcPnTkETDy3hZo7ZH1upGLAaUegiAjP9:WnyAn7nC63Q3bGUQsPaCB
Malware Config
Targets
-
-
Target
8c9acb89f44abb5641c2d86ee41bec0a_JaffaCakes118
-
Size
28KB
-
MD5
8c9acb89f44abb5641c2d86ee41bec0a
-
SHA1
ec7c8481a5566ffb57f12be8c50fc087594ec924
-
SHA256
2db1acf9d2128a9b9b48b04a707f7c40ce15ad9d309803f3e1b9e4ac0cfda790
-
SHA512
bf4b182847691434827fc8c8eaa389b50a32af491586e13333a124c3053498f23f681e585d3706ed39e3d1346c85e0a06bb2d8c7ab9f2d64fca7746894c70afa
-
SSDEEP
384:/xA2OFb3GXldJERr3P1gg/L9Risn/a60TcPnTkETDy3hZo7ZH1upGLAaUegiAjP9:WnyAn7nC63Q3bGUQsPaCB
Score8/10-
Disables Task Manager via registry modification
-
Modifies Windows Firewall
-
Adds Run key to start application
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1