General
-
Target
f4fec80acddde3519d8dd7e5bbbea5fc_JaffaCakes118
-
Size
448KB
-
Sample
240925-c7anestbrh
-
MD5
f4fec80acddde3519d8dd7e5bbbea5fc
-
SHA1
410b5e558f5f6376e2995b4f8f896d3e83cc5535
-
SHA256
2b4548b5e515f6e8ca51013bb0356ef23ed76e7bb14c618a5f2d38c383e9c9e8
-
SHA512
795e77429c16e9bf0e917bffe02d0daf9899f20721fcefb37663d0abaebf9cb6ebc3bd5fb4b916e3770d6deaed22a89bc32d2b41e28fddd1e2d09b6eca518be0
-
SSDEEP
6144:s/uLykF3sOtQAP6s22jvjcA3vqGk5xfGSviruLOjBIx/aGND6A/428KKNtt:s/L0tQo69+rcYqGkLqruaPku4AKCt
Malware Config
Targets
-
-
Target
f4fec80acddde3519d8dd7e5bbbea5fc_JaffaCakes118
-
Size
448KB
-
MD5
f4fec80acddde3519d8dd7e5bbbea5fc
-
SHA1
410b5e558f5f6376e2995b4f8f896d3e83cc5535
-
SHA256
2b4548b5e515f6e8ca51013bb0356ef23ed76e7bb14c618a5f2d38c383e9c9e8
-
SHA512
795e77429c16e9bf0e917bffe02d0daf9899f20721fcefb37663d0abaebf9cb6ebc3bd5fb4b916e3770d6deaed22a89bc32d2b41e28fddd1e2d09b6eca518be0
-
SSDEEP
6144:s/uLykF3sOtQAP6s22jvjcA3vqGk5xfGSviruLOjBIx/aGND6A/428KKNtt:s/L0tQo69+rcYqGkLqruaPku4AKCt
Score10/10-
Windows security bypass
-
Disables taskbar notifications via registry modification
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Windows security modification
-
Adds Run key to start application
-