General
-
Target
270e90df91b371e9199ca5f1fe221eb0_JaffaCakes118
-
Size
504KB
-
Sample
241008-3g67taycjn
-
MD5
270e90df91b371e9199ca5f1fe221eb0
-
SHA1
2c6b01c98895a37e8aac974a22cc2e4caf68b1b5
-
SHA256
e10b8462b9601328a5724013ddcbf6073490944dc736c71e70534538aeb16409
-
SHA512
ed3daa850b6c1ed5fed8b0c49e2411c09b9f38464413f78aa121cf35b3bcdc0228746e54788ae6ebdfe40694572aeb9142ca146c76f2cac126a399fa12f68f9e
-
SSDEEP
6144:lrkzCfFtcwJEtsE7NTgVzenFjcsLeRKKI3F/QUu0a0aAzATKfJw1PcJQJ1FFwMcW:ACN+woVnL+IVVQ0aAETKapIY17wM2
Malware Config
Targets
-
-
Target
270e90df91b371e9199ca5f1fe221eb0_JaffaCakes118
-
Size
504KB
-
MD5
270e90df91b371e9199ca5f1fe221eb0
-
SHA1
2c6b01c98895a37e8aac974a22cc2e4caf68b1b5
-
SHA256
e10b8462b9601328a5724013ddcbf6073490944dc736c71e70534538aeb16409
-
SHA512
ed3daa850b6c1ed5fed8b0c49e2411c09b9f38464413f78aa121cf35b3bcdc0228746e54788ae6ebdfe40694572aeb9142ca146c76f2cac126a399fa12f68f9e
-
SSDEEP
6144:lrkzCfFtcwJEtsE7NTgVzenFjcsLeRKKI3F/QUu0a0aAzATKfJw1PcJQJ1FFwMcW:ACN+woVnL+IVVQ0aAETKapIY17wM2
Score10/10-
UAC bypass
-
Windows security bypass
-
Disables taskbar notifications via registry modification
-
Windows security modification
-
Adds Run key to start application
-
Checks whether UAC is enabled
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Impair Defenses
3Disable or Modify Tools
3Modify Registry
5