General
-
Target
f6eb9249a140ca4cda64d29c55d51cb9_JaffaCakes118
-
Size
308KB
-
Sample
240925-1m63wszapq
-
MD5
f6eb9249a140ca4cda64d29c55d51cb9
-
SHA1
887c4e5be8d91db0934f6b14175d03fef4deb926
-
SHA256
726827baad18b1085d30236233a98c4553fab69ae400804392f6649859b6d79d
-
SHA512
9a0ae8830a14ce492df189484127da0d75a10ec6ccb3209c83cbafda7559aa2562458a6ff570e804dd411f8b4355408c76758a2490f22222236217de0e95ace0
-
SSDEEP
6144:BzqCXb+UWqF+sakFgqi3jISck4csLFnIT/eUxUn2YM0Ntjk:NmNWgJ3jUknsLFCBUhZPk
Malware Config
Targets
-
-
Target
f6eb9249a140ca4cda64d29c55d51cb9_JaffaCakes118
-
Size
308KB
-
MD5
f6eb9249a140ca4cda64d29c55d51cb9
-
SHA1
887c4e5be8d91db0934f6b14175d03fef4deb926
-
SHA256
726827baad18b1085d30236233a98c4553fab69ae400804392f6649859b6d79d
-
SHA512
9a0ae8830a14ce492df189484127da0d75a10ec6ccb3209c83cbafda7559aa2562458a6ff570e804dd411f8b4355408c76758a2490f22222236217de0e95ace0
-
SSDEEP
6144:BzqCXb+UWqF+sakFgqi3jISck4csLFnIT/eUxUn2YM0Ntjk:NmNWgJ3jUknsLFCBUhZPk
Score5/10-
Boot or Logon Autostart Execution: Authentication Package
Suspicious Windows Authentication Registry Modification.
-