General
-
Target
fe4fe93de7e5efe806002e75f96ad9af_JaffaCakes118
-
Size
344KB
-
Sample
240929-mavx7szclr
-
MD5
fe4fe93de7e5efe806002e75f96ad9af
-
SHA1
281967d0d542a029ba7cd3ec933a910fe8740099
-
SHA256
801105d90e5acc732ca656aa4ac589ee393a4b4f3dacf2f1bcb5124c68f66df3
-
SHA512
7c4148079b1ef44ba7aed75b87ac7ca8cf5570d366549f4054df3af8cb6caf97dd407b5f4be96333be9acb32071357ac283e1e8b8ec39ca20c44012aa476ca62
-
SSDEEP
6144:ZCPVUsTBEGeN543zGNr7ovR+tH4Sk4urnFN+LqxlRGww2JjYIJ:ZCysTBEGeo3zGZIR++S5uZplkxknJ
Malware Config
Targets
-
-
Target
fe4fe93de7e5efe806002e75f96ad9af_JaffaCakes118
-
Size
344KB
-
MD5
fe4fe93de7e5efe806002e75f96ad9af
-
SHA1
281967d0d542a029ba7cd3ec933a910fe8740099
-
SHA256
801105d90e5acc732ca656aa4ac589ee393a4b4f3dacf2f1bcb5124c68f66df3
-
SHA512
7c4148079b1ef44ba7aed75b87ac7ca8cf5570d366549f4054df3af8cb6caf97dd407b5f4be96333be9acb32071357ac283e1e8b8ec39ca20c44012aa476ca62
-
SSDEEP
6144:ZCPVUsTBEGeN543zGNr7ovR+tH4Sk4urnFN+LqxlRGww2JjYIJ:ZCysTBEGeo3zGZIR++S5uZplkxknJ
Score10/10-
UAC bypass
-
Windows security bypass
-
Disables taskbar notifications via registry modification
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Windows security modification
-
Checks whether UAC is enabled
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Defense Evasion
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Impair Defenses
3Disable or Modify Tools
3Modify Registry
4