General
-
Target
a9abd03899f9d0d30033a99d60d25aa3_JaffaCakes118
-
Size
398KB
-
Sample
240819-fkmagsvfnh
-
MD5
a9abd03899f9d0d30033a99d60d25aa3
-
SHA1
2400a2ece5fc5b69a95f232f5bf72d23492d4923
-
SHA256
b1d58ec9e1339af39852ad1d9af8eef47abf7e92d07bb0b86b9ead3118d0821e
-
SHA512
41c1413be4b712008b074077d3e31cce74da613f7c7e28a21fcc62f856a5e3ee2b8078cbfe253d635ad703ef669b9c0146a4c099e96a2a33fecc41ca0323b058
-
SSDEEP
12288:2C8j5LHNmRG4Pn8FE+Kqz/vR3FvK0mzlt:Z8FbQ/8FEcz/HKXv
Malware Config
Targets
-
-
Target
a9abd03899f9d0d30033a99d60d25aa3_JaffaCakes118
-
Size
398KB
-
MD5
a9abd03899f9d0d30033a99d60d25aa3
-
SHA1
2400a2ece5fc5b69a95f232f5bf72d23492d4923
-
SHA256
b1d58ec9e1339af39852ad1d9af8eef47abf7e92d07bb0b86b9ead3118d0821e
-
SHA512
41c1413be4b712008b074077d3e31cce74da613f7c7e28a21fcc62f856a5e3ee2b8078cbfe253d635ad703ef669b9c0146a4c099e96a2a33fecc41ca0323b058
-
SSDEEP
12288:2C8j5LHNmRG4Pn8FE+Kqz/vR3FvK0mzlt:Z8FbQ/8FEcz/HKXv
Score8/10-
Downloads MZ/PE file
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Checks whether UAC is enabled
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Modify Registry
2Subvert Trust Controls
1Install Root Certificate
1