General
-
Target
12cdbd162cb9012336f0db4747f3dd6f_JaffaCakes118
-
Size
571KB
-
Sample
241004-ll6y6s1dra
-
MD5
12cdbd162cb9012336f0db4747f3dd6f
-
SHA1
25a985a8ef224cedbd4403681011000d3acde5a5
-
SHA256
c075f306772da32d003d2cf862698481ed246731ec8c56b12619763b7e160b78
-
SHA512
3cab00f65afc116e73c8978161587dc904714c220a25027eb60511f2114ae39ac38f80d3ff62172ba69cc6dd5de80c233a295150617b4e47fb59bc95581c0f04
-
SSDEEP
6144:4YcOmpzlb91mzabalOX5ZyEWwRnJNGn84AgI8rlzM2YsCkbZRiY1VaJ:ncOmPGz1O/51a8VgIwzM2jCkbzP10
Malware Config
Targets
-
-
Target
12cdbd162cb9012336f0db4747f3dd6f_JaffaCakes118
-
Size
571KB
-
MD5
12cdbd162cb9012336f0db4747f3dd6f
-
SHA1
25a985a8ef224cedbd4403681011000d3acde5a5
-
SHA256
c075f306772da32d003d2cf862698481ed246731ec8c56b12619763b7e160b78
-
SHA512
3cab00f65afc116e73c8978161587dc904714c220a25027eb60511f2114ae39ac38f80d3ff62172ba69cc6dd5de80c233a295150617b4e47fb59bc95581c0f04
-
SSDEEP
6144:4YcOmpzlb91mzabalOX5ZyEWwRnJNGn84AgI8rlzM2YsCkbZRiY1VaJ:ncOmPGz1O/51a8VgIwzM2jCkbzP10
Score10/10-
UAC bypass
-
Windows security bypass
-
Disables taskbar notifications via registry modification
-
Windows security modification
-
Adds Run key to start application
-
Checks whether UAC is enabled
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Impair Defenses
3Disable or Modify Tools
3Modify Registry
5