General
-
Target
c759da9e85b72037b8d0441f546835d9_JaffaCakes118
-
Size
290KB
-
Sample
240828-we464sydmc
-
MD5
c759da9e85b72037b8d0441f546835d9
-
SHA1
31882a1ddd5b9d5267517049fe0a2749bdec49ea
-
SHA256
3464063b9c8b733a0f8ae882264eaab806da3fd106d454fb9db9cb8155e4190e
-
SHA512
0ee2086aa8f9aaa0ddf7e89ba109f39be807e38a48ce348f9a90b7d073ba44c064241412650f9732243a0fa9ab44ee3ccb7c0cceea9dc7328dd2aaa0e36c5bef
-
SSDEEP
6144:lpyBV6C2NpyADglnrL8mJB/OsUJCYrWHxd:lpy02AD2rvdUJDrWH
Malware Config
Targets
-
-
Target
c759da9e85b72037b8d0441f546835d9_JaffaCakes118
-
Size
290KB
-
MD5
c759da9e85b72037b8d0441f546835d9
-
SHA1
31882a1ddd5b9d5267517049fe0a2749bdec49ea
-
SHA256
3464063b9c8b733a0f8ae882264eaab806da3fd106d454fb9db9cb8155e4190e
-
SHA512
0ee2086aa8f9aaa0ddf7e89ba109f39be807e38a48ce348f9a90b7d073ba44c064241412650f9732243a0fa9ab44ee3ccb7c0cceea9dc7328dd2aaa0e36c5bef
-
SSDEEP
6144:lpyBV6C2NpyADglnrL8mJB/OsUJCYrWHxd:lpy02AD2rvdUJDrWH
Score8/10-
Boot or Logon Autostart Execution: Active Setup
Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
-
Disables taskbar notifications via registry modification
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-