General
-
Target
bf3404d1f0675ac33ad0882384ff619c_JaffaCakes118
-
Size
815KB
-
Sample
240824-xjm9tswbjj
-
MD5
bf3404d1f0675ac33ad0882384ff619c
-
SHA1
c36c82e56fc719a64766b4da41440c2242734300
-
SHA256
8aa6779096015d5556d4e86dc2716f65556e8bf5e8fba559cd11fe757cf8d86d
-
SHA512
4bb9d624fbfe143f2c98ae57671c4c6f8123017429487802780eab5f68fc0a7f3cbbeb5d0b27101b3c22993758304eb52c25d0f1d8dafd8c4aa5647d8c79e6f8
-
SSDEEP
24576:OmuSuqtdgkx7P0UjiSR0REVj67940b8tRIoLt:0pqt5P0CbR0RO8941U4t
Malware Config
Targets
-
-
Target
bf3404d1f0675ac33ad0882384ff619c_JaffaCakes118
-
Size
815KB
-
MD5
bf3404d1f0675ac33ad0882384ff619c
-
SHA1
c36c82e56fc719a64766b4da41440c2242734300
-
SHA256
8aa6779096015d5556d4e86dc2716f65556e8bf5e8fba559cd11fe757cf8d86d
-
SHA512
4bb9d624fbfe143f2c98ae57671c4c6f8123017429487802780eab5f68fc0a7f3cbbeb5d0b27101b3c22993758304eb52c25d0f1d8dafd8c4aa5647d8c79e6f8
-
SSDEEP
24576:OmuSuqtdgkx7P0UjiSR0REVj67940b8tRIoLt:0pqt5P0CbR0RO8941U4t
Score7/10-
Event Triggered Execution: Component Object Model Hijacking
Adversaries may establish persistence by executing malicious content triggered by hijacked references to Component Object Model (COM) objects.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Checks whether UAC is enabled
-