General
-
Target
ed7d328ed76995a62501bf068ecd6286_JaffaCakes118
-
Size
408KB
-
Sample
240920-nms5tavajn
-
MD5
ed7d328ed76995a62501bf068ecd6286
-
SHA1
a4066344e4f47c6a405d14ce98850e49f710a8f0
-
SHA256
471661dc09dfc572273906c2414730b9efefdb611b3c6869eacffad5f23591c0
-
SHA512
73f921df50d58b6cc25f902ee2230543c8338eb604e88806de888ffca926f89928c20ad821823220547ebcf6b48ce69520ad730b89c895d0a5a2911ca45e820a
-
SSDEEP
12288:3hmjgh6pQscHg+yeTYkxLLVfsZvTmROE:EUHg+wsfsBmZ
Malware Config
Targets
-
-
Target
ed7d328ed76995a62501bf068ecd6286_JaffaCakes118
-
Size
408KB
-
MD5
ed7d328ed76995a62501bf068ecd6286
-
SHA1
a4066344e4f47c6a405d14ce98850e49f710a8f0
-
SHA256
471661dc09dfc572273906c2414730b9efefdb611b3c6869eacffad5f23591c0
-
SHA512
73f921df50d58b6cc25f902ee2230543c8338eb604e88806de888ffca926f89928c20ad821823220547ebcf6b48ce69520ad730b89c895d0a5a2911ca45e820a
-
SSDEEP
12288:3hmjgh6pQscHg+yeTYkxLLVfsZvTmROE:EUHg+wsfsBmZ
Score10/10-
Windows security bypass
-
Disables taskbar notifications via registry modification
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Windows security modification
-
Adds Run key to start application
-