General
-
Target
ec7e0c3859392ea29800f98ef22e1fdb_JaffaCakes118
-
Size
392KB
-
Sample
240920-aw9l9szarb
-
MD5
ec7e0c3859392ea29800f98ef22e1fdb
-
SHA1
f287c98f321a8426e248fa0f2f564550a4fb5b94
-
SHA256
692e10e04f749e79939d3d201e265589de8a9f834c5f09f35d47fffe668b9dfa
-
SHA512
adccbe9ab1e3b3851ed5b28b18cb0072d6b01d9d72c0dcb1ddf5b528e361864eaa01b12e4fe6446ee5c0aac2b5d99f6f585a80b5d85afe2e118cc0938aafb38d
-
SSDEEP
6144:MPN1wG0fljKQIZhzc7HVHtf5vuyh+ajZCsuAMXMzFHCD/yr07oAH4EgEEhpA:MF/ApUvsfRh+ajZCBAMXoUK0VHYhpA
Malware Config
Targets
-
-
Target
ec7e0c3859392ea29800f98ef22e1fdb_JaffaCakes118
-
Size
392KB
-
MD5
ec7e0c3859392ea29800f98ef22e1fdb
-
SHA1
f287c98f321a8426e248fa0f2f564550a4fb5b94
-
SHA256
692e10e04f749e79939d3d201e265589de8a9f834c5f09f35d47fffe668b9dfa
-
SHA512
adccbe9ab1e3b3851ed5b28b18cb0072d6b01d9d72c0dcb1ddf5b528e361864eaa01b12e4fe6446ee5c0aac2b5d99f6f585a80b5d85afe2e118cc0938aafb38d
-
SSDEEP
6144:MPN1wG0fljKQIZhzc7HVHtf5vuyh+ajZCsuAMXMzFHCD/yr07oAH4EgEEhpA:MF/ApUvsfRh+ajZCBAMXoUK0VHYhpA
Score10/10-
Windows security bypass
-
Disables taskbar notifications via registry modification
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Windows security modification
-
Adds Run key to start application
-