General
-
Target
JaffaCakes118_87ab7e3dc92660d63c458d9b498a2a42
-
Size
80KB
-
Sample
250203-mxzvns1kgl
-
MD5
87ab7e3dc92660d63c458d9b498a2a42
-
SHA1
8b1c2f958325c98bfff4dcf92402ccb4d25b2dbb
-
SHA256
afceda0f396fcd4ad5054f9b1abf85e356e1a7775fa6d58f0c0b093e1a08cda5
-
SHA512
25e2b7b5c778028864b7bf25bccbf807dfe822fcd961de5ddc939295a0dfec0d2b12b52b41042d7565e2ba177a3e90519deb7a07493f0fe3dfb3b172d395cc51
-
SSDEEP
1536:uK9tLguzpq+1dssPUZJMUDtX5KmXCrNP17e:1guRssPURp3Crre
Malware Config
Targets
-
-
Target
JaffaCakes118_87ab7e3dc92660d63c458d9b498a2a42
-
Size
80KB
-
MD5
87ab7e3dc92660d63c458d9b498a2a42
-
SHA1
8b1c2f958325c98bfff4dcf92402ccb4d25b2dbb
-
SHA256
afceda0f396fcd4ad5054f9b1abf85e356e1a7775fa6d58f0c0b093e1a08cda5
-
SHA512
25e2b7b5c778028864b7bf25bccbf807dfe822fcd961de5ddc939295a0dfec0d2b12b52b41042d7565e2ba177a3e90519deb7a07493f0fe3dfb3b172d395cc51
-
SSDEEP
1536:uK9tLguzpq+1dssPUZJMUDtX5KmXCrNP17e:1guRssPURp3Crre
Score10/10-
Modifies firewall policy service
-
Adds policy Run key to start application
-
Boot or Logon Autostart Execution: Active Setup
Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
3Active Setup
1Registry Run Keys / Startup Folder
2Create or Modify System Process
1Windows Service
1Privilege Escalation
Boot or Logon Autostart Execution
3Active Setup
1Registry Run Keys / Startup Folder
2Create or Modify System Process
1Windows Service
1