General
-
Target
dfd5be2aeabc2a79c1e64e0b3a6dac73_JaffaCakes118
-
Size
154KB
-
Sample
240914-kkfvxswara
-
MD5
dfd5be2aeabc2a79c1e64e0b3a6dac73
-
SHA1
358688d5056e010421273e8c0277b99c97280427
-
SHA256
a257299b24c3b271d0b520fe03ad352eed2b9bca06b2f059b4da85b9c3e5df4e
-
SHA512
d06753e9d5f13c43ab5ac45d8001e8bd803764bc36b248d0f2ac82f32919faa17b8a95413c6b39df0bb189f882e6232e2bfa636fc2e399adcf11bb81dbe637a8
-
SSDEEP
3072:WSnWiNbA7I+HM6XIbq1OftWYkqjDoleUdyIB44J1jdeNFuG:W5iNKIT0Gt2LfeNFuG
Malware Config
Targets
-
-
Target
dfd5be2aeabc2a79c1e64e0b3a6dac73_JaffaCakes118
-
Size
154KB
-
MD5
dfd5be2aeabc2a79c1e64e0b3a6dac73
-
SHA1
358688d5056e010421273e8c0277b99c97280427
-
SHA256
a257299b24c3b271d0b520fe03ad352eed2b9bca06b2f059b4da85b9c3e5df4e
-
SHA512
d06753e9d5f13c43ab5ac45d8001e8bd803764bc36b248d0f2ac82f32919faa17b8a95413c6b39df0bb189f882e6232e2bfa636fc2e399adcf11bb81dbe637a8
-
SSDEEP
3072:WSnWiNbA7I+HM6XIbq1OftWYkqjDoleUdyIB44J1jdeNFuG:W5iNKIT0Gt2LfeNFuG
Score10/10-
Modifies Windows Defender Real-time Protection settings
-
Windows security bypass
-
Executes dropped EXE
-
Loads dropped DLL
-
Windows security modification
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Create or Modify System Process
1Windows Service
1