General
-
Target
d13c20ddcd9a0ddaa15811b8a4bdba47_JaffaCakes118
-
Size
26KB
-
Sample
240907-gqz9zaybll
-
MD5
d13c20ddcd9a0ddaa15811b8a4bdba47
-
SHA1
ef52b79dffd3abe9e16799f10ea65cb79311612a
-
SHA256
9b658af3ee466fd01fdf2ab53a0eaebec48c52c30a1d3c2ea5190457de8c99a5
-
SHA512
509945f8f46bf41d1f7a1e528782b1c88811b90accaf25da8734e64ae4e7647d57f87b93d69544c7e127d5e86ec0a06465aa340a329e6e342cf0b42e7221d1bb
-
SSDEEP
384:m1dLdCYsFeeJSDvzalGUSuVTqvErH+gY5Ah63JtnX0V5gFnYndJlXaA7vr:mnQYsFzJMvcGUStEreVAE5lX0gnYdr
Malware Config
Targets
-
-
Target
d13c20ddcd9a0ddaa15811b8a4bdba47_JaffaCakes118
-
Size
26KB
-
MD5
d13c20ddcd9a0ddaa15811b8a4bdba47
-
SHA1
ef52b79dffd3abe9e16799f10ea65cb79311612a
-
SHA256
9b658af3ee466fd01fdf2ab53a0eaebec48c52c30a1d3c2ea5190457de8c99a5
-
SHA512
509945f8f46bf41d1f7a1e528782b1c88811b90accaf25da8734e64ae4e7647d57f87b93d69544c7e127d5e86ec0a06465aa340a329e6e342cf0b42e7221d1bb
-
SSDEEP
384:m1dLdCYsFeeJSDvzalGUSuVTqvErH+gY5Ah63JtnX0V5gFnYndJlXaA7vr:mnQYsFzJMvcGUStEreVAE5lX0gnYdr
Score10/10-
Modifies firewall policy service
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Create or Modify System Process
1Windows Service
1Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Create or Modify System Process
1Windows Service
1