General
-
Target
ea928ea0a1cafcf6d9d6fede5fba89f1_JaffaCakes118
-
Size
814KB
-
Sample
240919-ex3ybs1cmn
-
MD5
ea928ea0a1cafcf6d9d6fede5fba89f1
-
SHA1
02ff01fecf7297d6749b748b5a6d5d55a621c3af
-
SHA256
eed549efdf162f901597ad41139e9a29322c2fc1491fe1c09dab9ca1ead7dc1c
-
SHA512
bd7f3417f9b918298cb9dc77b1945682222325a4ff07f05010edc28f38c18f70b08e457dae598e87d17e1a246fac56c024dd25f5fdf98b524638621922a35668
-
SSDEEP
24576:kRDeg6ED87vMHjTm9aqUK+ws5YsK4bGH2VWO3V:9gJUvMHjTma15ZriHkWcV
Malware Config
Targets
-
-
Target
ea928ea0a1cafcf6d9d6fede5fba89f1_JaffaCakes118
-
Size
814KB
-
MD5
ea928ea0a1cafcf6d9d6fede5fba89f1
-
SHA1
02ff01fecf7297d6749b748b5a6d5d55a621c3af
-
SHA256
eed549efdf162f901597ad41139e9a29322c2fc1491fe1c09dab9ca1ead7dc1c
-
SHA512
bd7f3417f9b918298cb9dc77b1945682222325a4ff07f05010edc28f38c18f70b08e457dae598e87d17e1a246fac56c024dd25f5fdf98b524638621922a35668
-
SSDEEP
24576:kRDeg6ED87vMHjTm9aqUK+ws5YsK4bGH2VWO3V:9gJUvMHjTma15ZriHkWcV
Score7/10-
Event Triggered Execution: Component Object Model Hijacking
Adversaries may establish persistence by executing malicious content triggered by hijacked references to Component Object Model (COM) objects.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Checks whether UAC is enabled
-