General
-
Target
2acc0a6d4d2e50bcb79ae71e522555b1_JaffaCakes118
-
Size
444KB
-
Sample
241009-e2x8ms1blc
-
MD5
2acc0a6d4d2e50bcb79ae71e522555b1
-
SHA1
04992f94dc7e3bf6cdfef6928b04e1a0dcbd027f
-
SHA256
ac3a71986cdc342fee014c42bc0035cbf39b463f5bb72f79578c7601f4285acb
-
SHA512
0cd6d828358d849dc04a9e0632155828bafa5149a2a9744032f9997f578b8cbc5d6f5f5a7fb4b890d642655d1c86f2b8fe945c3655ff539a9069017dbc45b28f
-
SSDEEP
12288:vpWvxtjhK9wb+HaD2MBU3Vezlmi3lHbuad+sp/:RWvx5ho6O+2F3qlmi9bxdrp
Malware Config
Targets
-
-
Target
2acc0a6d4d2e50bcb79ae71e522555b1_JaffaCakes118
-
Size
444KB
-
MD5
2acc0a6d4d2e50bcb79ae71e522555b1
-
SHA1
04992f94dc7e3bf6cdfef6928b04e1a0dcbd027f
-
SHA256
ac3a71986cdc342fee014c42bc0035cbf39b463f5bb72f79578c7601f4285acb
-
SHA512
0cd6d828358d849dc04a9e0632155828bafa5149a2a9744032f9997f578b8cbc5d6f5f5a7fb4b890d642655d1c86f2b8fe945c3655ff539a9069017dbc45b28f
-
SSDEEP
12288:vpWvxtjhK9wb+HaD2MBU3Vezlmi3lHbuad+sp/:RWvx5ho6O+2F3qlmi9bxdrp
Score10/10-
UAC bypass
-
Windows security bypass
-
Disables taskbar notifications via registry modification
-
Windows security modification
-
Adds Run key to start application
-
Checks whether UAC is enabled
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Impair Defenses
3Disable or Modify Tools
3Modify Registry
5