General
-
Target
ed752ab9f0148a0c3bd4c08eb9ae4e52_JaffaCakes118
-
Size
450KB
-
Sample
240920-namr9stdkl
-
MD5
ed752ab9f0148a0c3bd4c08eb9ae4e52
-
SHA1
78fe39a3f53bda3761628bb3d92cfdb20f09adaf
-
SHA256
4d3af26d845a57cbee4d736e0fcc1a19955216706ad7d2af8d14f111d31167e7
-
SHA512
1c7ab93a6a67a468fc6b84f8d93536386154e46e0ef350a7f71fa77386329951bb3998b5c757dc80b2180e6552a3075f9bc95e134aaaf92a11748087495e1b51
-
SSDEEP
12288:y2f2hB4yVe0ZU1NQhD94nt1pNBtSkIlaasU3:yIGFV9Dct1plSFlaa
Malware Config
Targets
-
-
Target
ed752ab9f0148a0c3bd4c08eb9ae4e52_JaffaCakes118
-
Size
450KB
-
MD5
ed752ab9f0148a0c3bd4c08eb9ae4e52
-
SHA1
78fe39a3f53bda3761628bb3d92cfdb20f09adaf
-
SHA256
4d3af26d845a57cbee4d736e0fcc1a19955216706ad7d2af8d14f111d31167e7
-
SHA512
1c7ab93a6a67a468fc6b84f8d93536386154e46e0ef350a7f71fa77386329951bb3998b5c757dc80b2180e6552a3075f9bc95e134aaaf92a11748087495e1b51
-
SSDEEP
12288:y2f2hB4yVe0ZU1NQhD94nt1pNBtSkIlaasU3:yIGFV9Dct1plSFlaa
Score10/10-
Modifies WinLogon for persistence
-
Adds Run key to start application
-