General
-
Target
c7f8d6aab57f6b62c83d3e99fce32c97_JaffaCakes118
-
Size
352KB
-
Sample
240829-bhs8ssxgmm
-
MD5
c7f8d6aab57f6b62c83d3e99fce32c97
-
SHA1
8c814fd898f95861646ee7ea7b8c681a01fa5df4
-
SHA256
75b5b4f8c0934912dcf92a9b85e6dee18ab2287cf5cb7f4368ef43047aae884c
-
SHA512
6e66a73bfb100f2d43b7d52b8427d425ddbe3f76a9dfdec90af8822a4d8c231d30d65d8e2a7243070494ac3e38c2f0a601b8fa23141c7a49cbd8434e828feaba
-
SSDEEP
6144:VtAF2yV+uX6w+VRgbw6imfBtS7MUgF6vtA7ync3ZNm0+pntTsP/Xpd3:+2yUuJbB5tNFX7B3JusP/Zp
Malware Config
Targets
-
-
Target
c7f8d6aab57f6b62c83d3e99fce32c97_JaffaCakes118
-
Size
352KB
-
MD5
c7f8d6aab57f6b62c83d3e99fce32c97
-
SHA1
8c814fd898f95861646ee7ea7b8c681a01fa5df4
-
SHA256
75b5b4f8c0934912dcf92a9b85e6dee18ab2287cf5cb7f4368ef43047aae884c
-
SHA512
6e66a73bfb100f2d43b7d52b8427d425ddbe3f76a9dfdec90af8822a4d8c231d30d65d8e2a7243070494ac3e38c2f0a601b8fa23141c7a49cbd8434e828feaba
-
SSDEEP
6144:VtAF2yV+uX6w+VRgbw6imfBtS7MUgF6vtA7ync3ZNm0+pntTsP/Xpd3:+2yUuJbB5tNFX7B3JusP/Zp
Score10/10-
UAC bypass
-
Windows security bypass
-
Disables taskbar notifications via registry modification
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Windows security modification
-
Checks whether UAC is enabled
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Defense Evasion
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Impair Defenses
3Disable or Modify Tools
3Modify Registry
4