General
-
Target
d02f1fffec48a59e07315909b0d8e550_JaffaCakes118
-
Size
842KB
-
Sample
240906-w1y7zs1fjk
-
MD5
d02f1fffec48a59e07315909b0d8e550
-
SHA1
4ee08a800ef80fa0652ab699f5ac2ec0495967be
-
SHA256
4a64267e8b587efad33f3cbc961189436277dbb2c3c3763b21c53f2124e105a4
-
SHA512
956b4ed34fb56ccf1633920e499185650b18b526187f245d3742ea7469712ab6035d8bbe44b3d6370ab4386337c97a450a2f8b616a61496d7ccf571f904a68ce
-
SSDEEP
12288:3y6Shi42N37wvxlNZ+LaYRp/Y/lnbUITK8bM4N0mOol/ZHaouzIu0A:3y6SzO7wv/Qx4lbUI28bLPOol17c0A
Malware Config
Targets
-
-
Target
d02f1fffec48a59e07315909b0d8e550_JaffaCakes118
-
Size
842KB
-
MD5
d02f1fffec48a59e07315909b0d8e550
-
SHA1
4ee08a800ef80fa0652ab699f5ac2ec0495967be
-
SHA256
4a64267e8b587efad33f3cbc961189436277dbb2c3c3763b21c53f2124e105a4
-
SHA512
956b4ed34fb56ccf1633920e499185650b18b526187f245d3742ea7469712ab6035d8bbe44b3d6370ab4386337c97a450a2f8b616a61496d7ccf571f904a68ce
-
SSDEEP
12288:3y6Shi42N37wvxlNZ+LaYRp/Y/lnbUITK8bM4N0mOol/ZHaouzIu0A:3y6SzO7wv/Qx4lbUI28bLPOol17c0A
Score7/10-
Event Triggered Execution: Component Object Model Hijacking
Adversaries may establish persistence by executing malicious content triggered by hijacked references to Component Object Model (COM) objects.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Checks whether UAC is enabled
-