General

  • Target

    c07345715d6305fdbf14ad2280b52081_JaffaCakes118

  • Size

    360KB

  • Sample

    240825-ljwenaxbme

  • MD5

    c07345715d6305fdbf14ad2280b52081

  • SHA1

    6493440d03059f4863ef1a92bed64a049739b2a6

  • SHA256

    0fa26f8bebea7595cf8bcd0b66a07b0a8d4cf329761f2f1dc7ebab25fff1a311

  • SHA512

    889fa316b85d90948cf91533961de656521d96068ee010a55de31a88a8650c85cc318e962185d37abffb13730a351bacccdc181680470b12d12c264ed9f31a63

  • SSDEEP

    6144:OjWHFiU1MuhU2cYMKlxQLEGyQ8sW0rljK1kk2MMSVQYyIVhbj1/6qM:OaHFiuU6l6E0HtDMMYTJRI

Malware Config

Targets

    • Target

      c07345715d6305fdbf14ad2280b52081_JaffaCakes118

    • Size

      360KB

    • MD5

      c07345715d6305fdbf14ad2280b52081

    • SHA1

      6493440d03059f4863ef1a92bed64a049739b2a6

    • SHA256

      0fa26f8bebea7595cf8bcd0b66a07b0a8d4cf329761f2f1dc7ebab25fff1a311

    • SHA512

      889fa316b85d90948cf91533961de656521d96068ee010a55de31a88a8650c85cc318e962185d37abffb13730a351bacccdc181680470b12d12c264ed9f31a63

    • SSDEEP

      6144:OjWHFiU1MuhU2cYMKlxQLEGyQ8sW0rljK1kk2MMSVQYyIVhbj1/6qM:OaHFiuU6l6E0HtDMMYTJRI

    • Windows security bypass

    • Disables taskbar notifications via registry modification

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Windows security modification

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks