General
-
Target
dee42df3be49ee16e68794421bcf601e_JaffaCakes118
-
Size
416KB
-
Sample
240913-zsm2jayhje
-
MD5
dee42df3be49ee16e68794421bcf601e
-
SHA1
dbf0dac0841fa8dc767bbcf011f57edfd43d6511
-
SHA256
de0caf3319dcf97a8630599d762f7bb3adce92fc38e491d95fe5e91a4ccb8bb0
-
SHA512
c3769cbbffcd60ec95543db8d4291ad058ec045826fd54d2191c57ef98b952355858d51ac166e98509e6c1d8c7dbcb216c2da73ad83cf27cbbf63fbac7be28c0
-
SSDEEP
6144:RFXJEEL1/uM1ZBEp9RZ5b46ijbozptjdJ7QEc5Jg+FBSBNiNdSkgMpDnb:RFBRh94b4xjbozptH7QDfFsBNiNdSI
Malware Config
Targets
-
-
Target
dee42df3be49ee16e68794421bcf601e_JaffaCakes118
-
Size
416KB
-
MD5
dee42df3be49ee16e68794421bcf601e
-
SHA1
dbf0dac0841fa8dc767bbcf011f57edfd43d6511
-
SHA256
de0caf3319dcf97a8630599d762f7bb3adce92fc38e491d95fe5e91a4ccb8bb0
-
SHA512
c3769cbbffcd60ec95543db8d4291ad058ec045826fd54d2191c57ef98b952355858d51ac166e98509e6c1d8c7dbcb216c2da73ad83cf27cbbf63fbac7be28c0
-
SSDEEP
6144:RFXJEEL1/uM1ZBEp9RZ5b46ijbozptjdJ7QEc5Jg+FBSBNiNdSkgMpDnb:RFBRh94b4xjbozptH7QDfFsBNiNdSI
Score10/10-
Windows security bypass
-
Disables taskbar notifications via registry modification
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Windows security modification
-
Adds Run key to start application
-