General
-
Target
be37eba02a8fd146ad37d0c8aaf4eabd_JaffaCakes118
-
Size
703KB
-
Sample
241203-ttjslsylej
-
MD5
be37eba02a8fd146ad37d0c8aaf4eabd
-
SHA1
55bba7b41df9399eadbbd4d4613bf10a77a4b8db
-
SHA256
3171484ebb5bdac5732d2f17194042600d95fbddf80f9cdf31ded5867d5c8ee9
-
SHA512
e752d7da014461c80c328fea434f17ce1b5e99eafc164025b9bd2c57c47a115fd48730ba8200090f2f9738ed4b5690585c9aaf5eff2d27461abbd953f3168ae5
-
SSDEEP
12288:uviyjlMsGhLqVjJ/gaTbiO/7hlS85TMalRU24LJgyo/30pFfhdC24WD:OYLqv/gaTbisSqrQL6yoQfhdC24WD
Malware Config
Targets
-
-
Target
be37eba02a8fd146ad37d0c8aaf4eabd_JaffaCakes118
-
Size
703KB
-
MD5
be37eba02a8fd146ad37d0c8aaf4eabd
-
SHA1
55bba7b41df9399eadbbd4d4613bf10a77a4b8db
-
SHA256
3171484ebb5bdac5732d2f17194042600d95fbddf80f9cdf31ded5867d5c8ee9
-
SHA512
e752d7da014461c80c328fea434f17ce1b5e99eafc164025b9bd2c57c47a115fd48730ba8200090f2f9738ed4b5690585c9aaf5eff2d27461abbd953f3168ae5
-
SSDEEP
12288:uviyjlMsGhLqVjJ/gaTbiO/7hlS85TMalRU24LJgyo/30pFfhdC24WD:OYLqv/gaTbisSqrQL6yoQfhdC24WD
Score7/10-
Event Triggered Execution: Component Object Model Hijacking
Adversaries may establish persistence by executing malicious content triggered by hijacked references to Component Object Model (COM) objects.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Checks whether UAC is enabled
-