General
-
Target
ec895a9c19b6e8dde96263d4cae528f1_JaffaCakes118
-
Size
408KB
-
Sample
240920-bfs51s1amb
-
MD5
ec895a9c19b6e8dde96263d4cae528f1
-
SHA1
3cc608901404e40fa0f833e8f5451ec4c8c9c0b6
-
SHA256
0241dd9402345dff43eab181d4e59ede095b0f313d248c5a25f78c815ab6d9af
-
SHA512
294c6fbc902d1035112628fb3dd20eac7d5daf8578bd052885b8d95ccfa6a59113f15165a858519e80797b509d25d85457ec673acd322ea9ec32e9383b6f5fff
-
SSDEEP
6144:yyvExsZbBM3Ku4IJVuq81v2uVxMUxqlLnKMYwkCOX0NtQB6lGzq4e:ySvZbBM3K+Ja10nKMklXyQBxG4e
Malware Config
Targets
-
-
Target
ec895a9c19b6e8dde96263d4cae528f1_JaffaCakes118
-
Size
408KB
-
MD5
ec895a9c19b6e8dde96263d4cae528f1
-
SHA1
3cc608901404e40fa0f833e8f5451ec4c8c9c0b6
-
SHA256
0241dd9402345dff43eab181d4e59ede095b0f313d248c5a25f78c815ab6d9af
-
SHA512
294c6fbc902d1035112628fb3dd20eac7d5daf8578bd052885b8d95ccfa6a59113f15165a858519e80797b509d25d85457ec673acd322ea9ec32e9383b6f5fff
-
SSDEEP
6144:yyvExsZbBM3Ku4IJVuq81v2uVxMUxqlLnKMYwkCOX0NtQB6lGzq4e:ySvZbBM3K+Ja10nKMklXyQBxG4e
Score10/10-
Windows security bypass
-
Disables taskbar notifications via registry modification
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Windows security modification
-
Adds Run key to start application
-