General
-
Target
d13f4bcb6d7ffe40cdd908375f3ab8d6_JaffaCakes118
-
Size
357KB
-
Sample
240907-gv123ayenh
-
MD5
d13f4bcb6d7ffe40cdd908375f3ab8d6
-
SHA1
fc0cf624b0e2accf32fcf8cbfe4d156c87a5f0c9
-
SHA256
72e0374e38ccfa5e4442d86eea732422b7450de0aa7fd408131ca48f33ab83f4
-
SHA512
c0431aa903cb9b480384bc74718eb45feffdc05285b4070c9a06109ae0368f998e7c183b8d4ab701f2d3b0db708b13e5d2c6bad63558be0c171b0995916d3e13
-
SSDEEP
6144:Z8jmQm9nFK7Ax+LYBrtSRbIqz+WSrLGj+wvjG+qhloMHDjFN2LuPbNNi04w:YoMAxQ1bH8azq0SFN2SBw4
Malware Config
Targets
-
-
Target
d13f4bcb6d7ffe40cdd908375f3ab8d6_JaffaCakes118
-
Size
357KB
-
MD5
d13f4bcb6d7ffe40cdd908375f3ab8d6
-
SHA1
fc0cf624b0e2accf32fcf8cbfe4d156c87a5f0c9
-
SHA256
72e0374e38ccfa5e4442d86eea732422b7450de0aa7fd408131ca48f33ab83f4
-
SHA512
c0431aa903cb9b480384bc74718eb45feffdc05285b4070c9a06109ae0368f998e7c183b8d4ab701f2d3b0db708b13e5d2c6bad63558be0c171b0995916d3e13
-
SSDEEP
6144:Z8jmQm9nFK7Ax+LYBrtSRbIqz+WSrLGj+wvjG+qhloMHDjFN2LuPbNNi04w:YoMAxQ1bH8azq0SFN2SBw4
Score10/10-
UAC bypass
-
Windows security bypass
-
Disables taskbar notifications via registry modification
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Windows security modification
-
Checks whether UAC is enabled
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Defense Evasion
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Impair Defenses
3Disable or Modify Tools
3Modify Registry
4