General
-
Target
b2735ff8251132caaa6a4fe89723e6eb_JaffaCakes118
-
Size
365KB
-
Sample
240821-hfl52avajg
-
MD5
b2735ff8251132caaa6a4fe89723e6eb
-
SHA1
56797b32f34636ac930985a26e023e2762d6d277
-
SHA256
879fcb9b492bbf251c285879d0c78d4e2b77ca21b22ff89ec356110958fd77fd
-
SHA512
ea8fab3ded0c07d246de3a74ca4efdc459acb8c4d2132ec5cbfd98d1ca2eae0abe376baf62689da4394ce7230367261d08740f8b507b3c87aae56fe88850d3df
-
SSDEEP
6144:sRMUa4hib4j8jf51Qx7O6bcLehsEwkoK/6ERdFQJdlMu6lb/01apjbV6m8lL:sRMjx4ojf51aTcK0NEQUd0op3QlL
Malware Config
Targets
-
-
Target
b2735ff8251132caaa6a4fe89723e6eb_JaffaCakes118
-
Size
365KB
-
MD5
b2735ff8251132caaa6a4fe89723e6eb
-
SHA1
56797b32f34636ac930985a26e023e2762d6d277
-
SHA256
879fcb9b492bbf251c285879d0c78d4e2b77ca21b22ff89ec356110958fd77fd
-
SHA512
ea8fab3ded0c07d246de3a74ca4efdc459acb8c4d2132ec5cbfd98d1ca2eae0abe376baf62689da4394ce7230367261d08740f8b507b3c87aae56fe88850d3df
-
SSDEEP
6144:sRMUa4hib4j8jf51Qx7O6bcLehsEwkoK/6ERdFQJdlMu6lb/01apjbV6m8lL:sRMjx4ojf51aTcK0NEQUd0op3QlL
Score10/10-
UAC bypass
-
Windows security bypass
-
Disables taskbar notifications via registry modification
-
Windows security modification
-
Adds Run key to start application
-
Checks whether UAC is enabled
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Impair Defenses
3Disable or Modify Tools
3Modify Registry
5