General
-
Target
ce3f7853bf215dbee4d31fa3bdc1ddc1_JaffaCakes118
-
Size
899KB
-
Sample
240906-at5waswepk
-
MD5
ce3f7853bf215dbee4d31fa3bdc1ddc1
-
SHA1
d43d5d68d6dc30cef49f86775966238ee0917bcd
-
SHA256
df4a42627379fc08954d61eaf4e460932d4085495c4c7898fb622a311ef3ac38
-
SHA512
6d884f0acdfbf353f277d60974e81d4132a139fd3b34ba61050ec89500d505da0de1298643d3c658713f2e5873f9a8ad35e465a7ef4473c2a86ac8c53586c329
-
SSDEEP
12288:VkIybu8N3UzBStPzm4Al3Y0BDWixnLIIRjxr4XgD3GyCWRTZf5i57QKyNPHluDIg:VkEBSta9vcu5Zf/PcDI61aXMXD3Bp
Malware Config
Targets
-
-
Target
ce3f7853bf215dbee4d31fa3bdc1ddc1_JaffaCakes118
-
Size
899KB
-
MD5
ce3f7853bf215dbee4d31fa3bdc1ddc1
-
SHA1
d43d5d68d6dc30cef49f86775966238ee0917bcd
-
SHA256
df4a42627379fc08954d61eaf4e460932d4085495c4c7898fb622a311ef3ac38
-
SHA512
6d884f0acdfbf353f277d60974e81d4132a139fd3b34ba61050ec89500d505da0de1298643d3c658713f2e5873f9a8ad35e465a7ef4473c2a86ac8c53586c329
-
SSDEEP
12288:VkIybu8N3UzBStPzm4Al3Y0BDWixnLIIRjxr4XgD3GyCWRTZf5i57QKyNPHluDIg:VkEBSta9vcu5Zf/PcDI61aXMXD3Bp
Score10/10-
Modifies WinLogon for persistence
-
Drops file in System32 directory
-
Suspicious use of SetThreadContext
-