General
-
Target
ee1a5d0030fc44006f94f02dea2814ca_JaffaCakes118
-
Size
28KB
-
Sample
240920-v75gxaydnh
-
MD5
ee1a5d0030fc44006f94f02dea2814ca
-
SHA1
fea3289f603f4e310992b4f218e5d90826180bef
-
SHA256
84dc89e2d19d53dcb61204a6bf84fbe8395fde26ee561f14f79c61f24da2b5db
-
SHA512
2c219e6154c419a6d02b2e0ba2c54ecfe63f5cf6c7139d60e8c73c8cda1820c74083da246279924f567cc67b0ae907037123dc675872c703bc4f4ec8f5c1e2ac
-
SSDEEP
192:2h8QGIjbhRm1llmJUVMNdZriONjBAqHD2llv:2CQ17m1llVuLr7NlAqHD2Dv
Malware Config
Targets
-
-
Target
ee1a5d0030fc44006f94f02dea2814ca_JaffaCakes118
-
Size
28KB
-
MD5
ee1a5d0030fc44006f94f02dea2814ca
-
SHA1
fea3289f603f4e310992b4f218e5d90826180bef
-
SHA256
84dc89e2d19d53dcb61204a6bf84fbe8395fde26ee561f14f79c61f24da2b5db
-
SHA512
2c219e6154c419a6d02b2e0ba2c54ecfe63f5cf6c7139d60e8c73c8cda1820c74083da246279924f567cc67b0ae907037123dc675872c703bc4f4ec8f5c1e2ac
-
SSDEEP
192:2h8QGIjbhRm1llmJUVMNdZriONjBAqHD2llv:2CQ17m1llVuLr7NlAqHD2Dv
Score10/10-
Modifies WinLogon for persistence
-
Blocks application from running via registry modification
Adds application to list of disallowed applications.
-
Adds Run key to start application
-