General
-
Target
3db411ac0faa9de2806c07b3732c7b1c_JaffaCakes118
-
Size
867KB
-
Sample
241013-erjbqsydkc
-
MD5
3db411ac0faa9de2806c07b3732c7b1c
-
SHA1
160d8ef3d39c95e37f6e37118ca539bd0797a286
-
SHA256
f98e5f10ff478895ac6c59cea7d5ddd439b56b270771063a470596f319b85404
-
SHA512
13b02d8a405806affc51ea26aeb0d1a790c3412ac2cf36b53709656453c5b4e56cb7de1cdc12447b91d70c77c575ab7e8ba964b810119c8e7cef3d37ebe637d4
-
SSDEEP
12288:73bQW9YVHrv0hVs2BcVAyjZiYYxeOJ8Qd+aUYxfc7U4E0pbjyvQEnoCyXb/UKDdN:AhviGgds2xU7UB0VjQQEoCyXTUcYHNO
Malware Config
Targets
-
-
Target
3db411ac0faa9de2806c07b3732c7b1c_JaffaCakes118
-
Size
867KB
-
MD5
3db411ac0faa9de2806c07b3732c7b1c
-
SHA1
160d8ef3d39c95e37f6e37118ca539bd0797a286
-
SHA256
f98e5f10ff478895ac6c59cea7d5ddd439b56b270771063a470596f319b85404
-
SHA512
13b02d8a405806affc51ea26aeb0d1a790c3412ac2cf36b53709656453c5b4e56cb7de1cdc12447b91d70c77c575ab7e8ba964b810119c8e7cef3d37ebe637d4
-
SSDEEP
12288:73bQW9YVHrv0hVs2BcVAyjZiYYxeOJ8Qd+aUYxfc7U4E0pbjyvQEnoCyXb/UKDdN:AhviGgds2xU7UB0VjQQEoCyXTUcYHNO
Score7/10-
Event Triggered Execution: Component Object Model Hijacking
Adversaries may establish persistence by executing malicious content triggered by hijacked references to Component Object Model (COM) objects.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Checks whether UAC is enabled
-