General

  • Target

    e19ae48aabfae5c2f6d97765748556e0_JaffaCakes118

  • Size

    370KB

  • Sample

    240915-dvnj7atbkf

  • MD5

    e19ae48aabfae5c2f6d97765748556e0

  • SHA1

    c6048b107a2c41bc428e1d47c9b5a0899de37f01

  • SHA256

    26d2592ca2ad487054078af1fbdf7defb6b3f239d6c545649d764bc31d3ee689

  • SHA512

    6e34c45a2a6885423258600bf3c8d3f27c8c621fc10f282cebbee1e2d93696a1ea01fef867e1986a9778587e7caed86e83b3a0b82c9379cb1924803b2c2f9532

  • SSDEEP

    6144:hfaM8XNbk3HyKj+Imup/1N0U4tfMEzQoslcCNiDUkCtsp31g2DXJ:8M8XhGHyKjFPpqtcokNYUkJhDX

Malware Config

Targets

    • Target

      e19ae48aabfae5c2f6d97765748556e0_JaffaCakes118

    • Size

      370KB

    • MD5

      e19ae48aabfae5c2f6d97765748556e0

    • SHA1

      c6048b107a2c41bc428e1d47c9b5a0899de37f01

    • SHA256

      26d2592ca2ad487054078af1fbdf7defb6b3f239d6c545649d764bc31d3ee689

    • SHA512

      6e34c45a2a6885423258600bf3c8d3f27c8c621fc10f282cebbee1e2d93696a1ea01fef867e1986a9778587e7caed86e83b3a0b82c9379cb1924803b2c2f9532

    • SSDEEP

      6144:hfaM8XNbk3HyKj+Imup/1N0U4tfMEzQoslcCNiDUkCtsp31g2DXJ:8M8XhGHyKjFPpqtcokNYUkJhDX

    • Windows security bypass

    • Disables taskbar notifications via registry modification

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Windows security modification

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks