General
-
Target
b4e85da551938c94bf7c6325df57a4af_JaffaCakes118
-
Size
96KB
-
Sample
241130-fqbqyatndv
-
MD5
b4e85da551938c94bf7c6325df57a4af
-
SHA1
749016c3beed41004e5439939b2b5e41ac4643ce
-
SHA256
21ea3e0d4e4a57c3833f4c69740997880634ad49b07fae2d9c1b93ac9c3ce60d
-
SHA512
077407c27ad2f7cb3d7d01a3a081950d20296fc342d5ef7e4d7c2b190cc73347c056a33a083d04d524afc2413372ba56a683fdabe589251acfbc915a672d1a0b
-
SSDEEP
1536:rD1i2vPS2G9gpSZmiSjrk1R+7R4I6xqEAHiZfxC4tgGS432a1aDcIS+YD:Ni2Hcg80jg1R+94I6xqEpjm432a1aD3q
Malware Config
Targets
-
-
Target
b4e85da551938c94bf7c6325df57a4af_JaffaCakes118
-
Size
96KB
-
MD5
b4e85da551938c94bf7c6325df57a4af
-
SHA1
749016c3beed41004e5439939b2b5e41ac4643ce
-
SHA256
21ea3e0d4e4a57c3833f4c69740997880634ad49b07fae2d9c1b93ac9c3ce60d
-
SHA512
077407c27ad2f7cb3d7d01a3a081950d20296fc342d5ef7e4d7c2b190cc73347c056a33a083d04d524afc2413372ba56a683fdabe589251acfbc915a672d1a0b
-
SSDEEP
1536:rD1i2vPS2G9gpSZmiSjrk1R+7R4I6xqEAHiZfxC4tgGS432a1aDcIS+YD:Ni2Hcg80jg1R+94I6xqEpjm432a1aD3q
Score10/10-
Modifies firewall policy service
-
UAC bypass
-
Checks whether UAC is enabled
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Create or Modify System Process
1Windows Service
1Defense Evasion
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Impair Defenses
2Disable or Modify System Firewall
1Disable or Modify Tools
1Modify Registry
4