General

  • Target

    82c7b789fe34bdee8c1bc81e76e5cc11_JaffaCakes118

  • Size

    428KB

  • Sample

    241031-m9578avqdw

  • MD5

    82c7b789fe34bdee8c1bc81e76e5cc11

  • SHA1

    9b78f4e73b0ddf6405029f69835eccd9439e262f

  • SHA256

    da330c07454e30840317966183b697031cc7c76e9cb8b3bf9a8ec7f7201c89eb

  • SHA512

    49f19f89542b07fcd83f076e6035192db63220e3fa113425b6f176d26e60b6e487c23c3d9a10b8deeff3aff2d9fac71c40cc0eae515aceafc2b6b75e17b96466

  • SSDEEP

    6144:RxYWD4r16yOQhKWmPleQcc37tp37sITnm0IwrM1pV25IXsBCcrsQPYFUrJaOL:Rja1slXccZp37X1I6MV25Wbss+J

Malware Config

Targets

    • Target

      82c7b789fe34bdee8c1bc81e76e5cc11_JaffaCakes118

    • Size

      428KB

    • MD5

      82c7b789fe34bdee8c1bc81e76e5cc11

    • SHA1

      9b78f4e73b0ddf6405029f69835eccd9439e262f

    • SHA256

      da330c07454e30840317966183b697031cc7c76e9cb8b3bf9a8ec7f7201c89eb

    • SHA512

      49f19f89542b07fcd83f076e6035192db63220e3fa113425b6f176d26e60b6e487c23c3d9a10b8deeff3aff2d9fac71c40cc0eae515aceafc2b6b75e17b96466

    • SSDEEP

      6144:RxYWD4r16yOQhKWmPleQcc37tp37sITnm0IwrM1pV25IXsBCcrsQPYFUrJaOL:Rja1slXccZp37X1I6MV25Wbss+J

    • Windows security bypass

    • Disables taskbar notifications via registry modification

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Windows security modification

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks