General
-
Target
f9fdba168a1583524439c5e901af69e2_JaffaCakes118
-
Size
432KB
-
Sample
240927-jfx3za1hqr
-
MD5
f9fdba168a1583524439c5e901af69e2
-
SHA1
904c078d89ad5eed556badeeeadc9a528ebd851b
-
SHA256
a7d00ba15c6dd63f57c31fb91530b5f67a5374d5c038e2cf964a3f8a8c8266cd
-
SHA512
dec3fe8a924750ec0473bcb604a16c65eb0dbf1c095fb96d7eabffc1907b72c73c360cec37c873482efb477f4bbe17a2f957e8d35598bb453d93495b7ebf9468
-
SSDEEP
12288:YyiHDBNOMpAaBYUAXqM5Pyfs79r+XlauktB9BI:YycDBkraB7AX75tuCB9BI
Malware Config
Targets
-
-
Target
f9fdba168a1583524439c5e901af69e2_JaffaCakes118
-
Size
432KB
-
MD5
f9fdba168a1583524439c5e901af69e2
-
SHA1
904c078d89ad5eed556badeeeadc9a528ebd851b
-
SHA256
a7d00ba15c6dd63f57c31fb91530b5f67a5374d5c038e2cf964a3f8a8c8266cd
-
SHA512
dec3fe8a924750ec0473bcb604a16c65eb0dbf1c095fb96d7eabffc1907b72c73c360cec37c873482efb477f4bbe17a2f957e8d35598bb453d93495b7ebf9468
-
SSDEEP
12288:YyiHDBNOMpAaBYUAXqM5Pyfs79r+XlauktB9BI:YycDBkraB7AX75tuCB9BI
Score10/10-
Windows security bypass
-
Disables taskbar notifications via registry modification
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Windows security modification
-
Adds Run key to start application
-