General
-
Target
a70c5fe6ba6467c956dd25f522ef773d_JaffaCakes118
-
Size
990KB
-
Sample
240818-r1v34s1dpm
-
MD5
a70c5fe6ba6467c956dd25f522ef773d
-
SHA1
9bc822658575217316e009bfcbbfb371043e0660
-
SHA256
e7bf2df5ed9987d151edb806efbad1ec7498668d89db67dd0b0e3d4de46f37f0
-
SHA512
e6dc87ec2c6b3737e8b1e5498335e4c75d51bff4d53da084e16b9e1444e8d347f1977a072df34a26f393b186b5f9f53c993435e13021c57613ddb4f2636fe2e5
-
SSDEEP
12288:lbszfWYzu4oE6i6WEtA/PUCtv22QMK631XhApobKnNTqNGD0yDJAger9M:lO+IoE6i6FKLJaMK69rINTSq0yDJ/eR
Malware Config
Targets
-
-
Target
a70c5fe6ba6467c956dd25f522ef773d_JaffaCakes118
-
Size
990KB
-
MD5
a70c5fe6ba6467c956dd25f522ef773d
-
SHA1
9bc822658575217316e009bfcbbfb371043e0660
-
SHA256
e7bf2df5ed9987d151edb806efbad1ec7498668d89db67dd0b0e3d4de46f37f0
-
SHA512
e6dc87ec2c6b3737e8b1e5498335e4c75d51bff4d53da084e16b9e1444e8d347f1977a072df34a26f393b186b5f9f53c993435e13021c57613ddb4f2636fe2e5
-
SSDEEP
12288:lbszfWYzu4oE6i6WEtA/PUCtv22QMK631XhApobKnNTqNGD0yDJAger9M:lO+IoE6i6FKLJaMK69rINTSq0yDJ/eR
Score10/10-
Modifies firewall policy service
-
UAC bypass
-
Checks whether UAC is enabled
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Create or Modify System Process
1Windows Service
1Defense Evasion
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Impair Defenses
2Disable or Modify System Firewall
1Disable or Modify Tools
1Modify Registry
5Subvert Trust Controls
1Install Root Certificate
1