General
-
Target
bb9ad907c536473a232b2899344c84b5_JaffaCakes118
-
Size
468KB
-
Sample
240823-nyqh3asbme
-
MD5
bb9ad907c536473a232b2899344c84b5
-
SHA1
b2084892027f3b39f1b4a3311a546f998bde44ef
-
SHA256
d6ceaa41649a98f8d5377669e8097c12f004d3432d44e950bc7b1dc2d5f5f390
-
SHA512
911b503b6b57620bdbc30b18d8025d7ccb14671139199d6d14225136524d07dfa5342fda9e63acb37450d8cb16b019e2d98be586b0cac1e380071072b357f25b
-
SSDEEP
12288:0Hh+vm7zGzwDwBMEyAuyziRkka9i/vBrsEyD3lH:0rJDwqEyzfkhkpvg
Malware Config
Targets
-
-
Target
bb9ad907c536473a232b2899344c84b5_JaffaCakes118
-
Size
468KB
-
MD5
bb9ad907c536473a232b2899344c84b5
-
SHA1
b2084892027f3b39f1b4a3311a546f998bde44ef
-
SHA256
d6ceaa41649a98f8d5377669e8097c12f004d3432d44e950bc7b1dc2d5f5f390
-
SHA512
911b503b6b57620bdbc30b18d8025d7ccb14671139199d6d14225136524d07dfa5342fda9e63acb37450d8cb16b019e2d98be586b0cac1e380071072b357f25b
-
SSDEEP
12288:0Hh+vm7zGzwDwBMEyAuyziRkka9i/vBrsEyD3lH:0rJDwqEyzfkhkpvg
Score10/10-
Windows security bypass
-
Disables taskbar notifications via registry modification
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Windows security modification
-
Adds Run key to start application
-