General
-
Target
be62770f876ade11bb2b932e9358b67d_JaffaCakes118
-
Size
357KB
-
Sample
240824-mbwacsxbrn
-
MD5
be62770f876ade11bb2b932e9358b67d
-
SHA1
7e59cd6f9f71dac9a50ab652851d4ef01978de41
-
SHA256
60fe7abfd9e34630c078b160753d436dcf8ed08e4a5688e555c3d59a2fe1f5ed
-
SHA512
0d1960081c46d365644cfea9fc3edf8db265cd81251faa7984b48852aa6326613951687df8ccb080a9da9b1c79e9150ce60b11f867051dd5fa8235b23ba344df
-
SSDEEP
6144:E8kmQm9nFK7Ax+LYBrtSRbIqz+WSrLGj+wvjG+qhloMHDjFN2LuPbNNi04w:ooMAxQ1bH8azq0SFN2SBw4
Malware Config
Targets
-
-
Target
be62770f876ade11bb2b932e9358b67d_JaffaCakes118
-
Size
357KB
-
MD5
be62770f876ade11bb2b932e9358b67d
-
SHA1
7e59cd6f9f71dac9a50ab652851d4ef01978de41
-
SHA256
60fe7abfd9e34630c078b160753d436dcf8ed08e4a5688e555c3d59a2fe1f5ed
-
SHA512
0d1960081c46d365644cfea9fc3edf8db265cd81251faa7984b48852aa6326613951687df8ccb080a9da9b1c79e9150ce60b11f867051dd5fa8235b23ba344df
-
SSDEEP
6144:E8kmQm9nFK7Ax+LYBrtSRbIqz+WSrLGj+wvjG+qhloMHDjFN2LuPbNNi04w:ooMAxQ1bH8azq0SFN2SBw4
Score10/10-
UAC bypass
-
Windows security bypass
-
Disables taskbar notifications via registry modification
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Windows security modification
-
Checks whether UAC is enabled
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Defense Evasion
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Impair Defenses
3Disable or Modify Tools
3Modify Registry
4