General
-
Target
10145d4291d70e76c990f3df2c70b105_JaffaCakes118
-
Size
84KB
-
Sample
241003-w56smatdnf
-
MD5
10145d4291d70e76c990f3df2c70b105
-
SHA1
875d54922a25a7f945c5dca80ff49c805ecb4349
-
SHA256
e41b5d008a4b4b25ae30088ceeeed2f66acee51c9bf1fe0659de6eb2185a04f4
-
SHA512
ad802a9bbdeb09e101f5717c62b45770fb6ad4d707c4343d0ceea5019d49565f2c37d384bd2fad2a9f139bd070d042f63cc073082b460bf7e646d780572c64b1
-
SSDEEP
1536:xBKUAfjncl5yQHmFB25xTX4yOH5XSaP+V9KOOUS5yUNE0BmLr55p/EK+CnJnOJ:xAU6n8Rm6vPk2Ps3E5jp/8CJn0
Malware Config
Targets
-
-
Target
10145d4291d70e76c990f3df2c70b105_JaffaCakes118
-
Size
84KB
-
MD5
10145d4291d70e76c990f3df2c70b105
-
SHA1
875d54922a25a7f945c5dca80ff49c805ecb4349
-
SHA256
e41b5d008a4b4b25ae30088ceeeed2f66acee51c9bf1fe0659de6eb2185a04f4
-
SHA512
ad802a9bbdeb09e101f5717c62b45770fb6ad4d707c4343d0ceea5019d49565f2c37d384bd2fad2a9f139bd070d042f63cc073082b460bf7e646d780572c64b1
-
SSDEEP
1536:xBKUAfjncl5yQHmFB25xTX4yOH5XSaP+V9KOOUS5yUNE0BmLr55p/EK+CnJnOJ:xAU6n8Rm6vPk2Ps3E5jp/8CJn0
Score10/10-
Modifies WinLogon for persistence
-
Disables RegEdit via registry modification
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Drops file in System32 directory
-