General

  • Target

    8e2c087953d3b800cb558ec3b205294c_JaffaCakes118

  • Size

    226KB

  • Sample

    241104-adzpcaxlht

  • MD5

    8e2c087953d3b800cb558ec3b205294c

  • SHA1

    360670e103909d6c1851d363675a661f89889685

  • SHA256

    f101ef10827a257c2614dff8fca3026fd88161b3d5acd157443566395374e4a5

  • SHA512

    eec71a0e23cf9fb8c3b5f0a51edbc73b51ca620feb39c4c9279502c1dab58550d183cde857ee5da3c2f3104082b942c481176e5af5db9ffa8a774376fd4513c2

  • SSDEEP

    3072:YHfl+tabKDjQOBjIXx1uFZ+E5auTiAtnMfzgDWGBscMNEDt7ceWPbRG:Y/2aeDpBkhcFZ+kzTWzgyGycURG

Malware Config

Targets

    • Target

      8e2c087953d3b800cb558ec3b205294c_JaffaCakes118

    • Size

      226KB

    • MD5

      8e2c087953d3b800cb558ec3b205294c

    • SHA1

      360670e103909d6c1851d363675a661f89889685

    • SHA256

      f101ef10827a257c2614dff8fca3026fd88161b3d5acd157443566395374e4a5

    • SHA512

      eec71a0e23cf9fb8c3b5f0a51edbc73b51ca620feb39c4c9279502c1dab58550d183cde857ee5da3c2f3104082b942c481176e5af5db9ffa8a774376fd4513c2

    • SSDEEP

      3072:YHfl+tabKDjQOBjIXx1uFZ+E5auTiAtnMfzgDWGBscMNEDt7ceWPbRG:Y/2aeDpBkhcFZ+kzTWzgyGycURG

    • Modifies visiblity of hidden/system files in Explorer

    • UAC bypass

    • Adds policy Run key to start application

    • Disables taskbar notifications via registry modification

    • Deletes itself

    • Blocklisted process makes network request

MITRE ATT&CK Enterprise v15

Tasks