General
-
Target
0b106d85b8539381e53f57b1880ff59c_JaffaCakes118
-
Size
412KB
-
Sample
241002-rjh28azgpn
-
MD5
0b106d85b8539381e53f57b1880ff59c
-
SHA1
d452ae044250dec5fbef76aabcac15f1dbdc5d74
-
SHA256
d48bc9f653034c398d45d700dedc7eb39f046fb11e796d2f37110772fe4fbb18
-
SHA512
f75affa5910cae5240e9ff29a52d20418ef9e5ab3d1aabd915821b7e90084d80e81415b1a9379cbfc0d91852388f21c1384b439f529b8c7fdd49ad10daaf88d9
-
SSDEEP
6144:vNE+odSbNxn9YKyEsNWihDaZCGTAP0kle7F5Xx+Lm1OjSnmGt7jdnyMeU79S4hiD:lElds0EkhDBlte7TXx+lSnhNLS80
Malware Config
Targets
-
-
Target
0b106d85b8539381e53f57b1880ff59c_JaffaCakes118
-
Size
412KB
-
MD5
0b106d85b8539381e53f57b1880ff59c
-
SHA1
d452ae044250dec5fbef76aabcac15f1dbdc5d74
-
SHA256
d48bc9f653034c398d45d700dedc7eb39f046fb11e796d2f37110772fe4fbb18
-
SHA512
f75affa5910cae5240e9ff29a52d20418ef9e5ab3d1aabd915821b7e90084d80e81415b1a9379cbfc0d91852388f21c1384b439f529b8c7fdd49ad10daaf88d9
-
SSDEEP
6144:vNE+odSbNxn9YKyEsNWihDaZCGTAP0kle7F5Xx+Lm1OjSnmGt7jdnyMeU79S4hiD:lElds0EkhDBlte7TXx+lSnhNLS80
Score10/10-
Windows security bypass
-
Disables taskbar notifications via registry modification
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Windows security modification
-
Adds Run key to start application
-