General
-
Target
199868098271f062541d8ad7347e09da_JaffaCakes118
-
Size
166KB
-
Sample
240628-k94chsvbrm
-
MD5
199868098271f062541d8ad7347e09da
-
SHA1
f88943a4b93f5df1b395df7d9f7486e523b0d3a1
-
SHA256
cedb22326170c6fba4720a9f26ffdac33ff3eb3dac7533551c67238db61a415d
-
SHA512
57bcc2b2333bf0341040d85ebd71466bbd072e8bb1fe5a5a714207382b82f6ce745b7e6eb3bc850fc0495238549e634333d3754b5b568c04f5966e96898f0629
-
SSDEEP
1536:95lTUKCYmCgV5bT/2d1QYeoJrc5p5yEmZtmnkUXB5Q+Vxzp0CY0voMS4yh:NTU56gVxj27NeGrejj0tmnJXBvzKcs
Static task
static1
Behavioral task
behavioral1
Sample
199868098271f062541d8ad7347e09da_JaffaCakes118.dll
Resource
win7-20240419-en
Malware Config
Targets
-
-
Target
199868098271f062541d8ad7347e09da_JaffaCakes118
-
Size
166KB
-
MD5
199868098271f062541d8ad7347e09da
-
SHA1
f88943a4b93f5df1b395df7d9f7486e523b0d3a1
-
SHA256
cedb22326170c6fba4720a9f26ffdac33ff3eb3dac7533551c67238db61a415d
-
SHA512
57bcc2b2333bf0341040d85ebd71466bbd072e8bb1fe5a5a714207382b82f6ce745b7e6eb3bc850fc0495238549e634333d3754b5b568c04f5966e96898f0629
-
SSDEEP
1536:95lTUKCYmCgV5bT/2d1QYeoJrc5p5yEmZtmnkUXB5Q+Vxzp0CY0voMS4yh:NTU56gVxj27NeGrejj0tmnJXBvzKcs
-
Modifies WinLogon for persistence
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-