General
-
Target
1e3a251949d7cf01fc05922cb503b90c_JaffaCakes118
-
Size
1.2MB
-
Sample
240702-gm512sshkq
-
MD5
1e3a251949d7cf01fc05922cb503b90c
-
SHA1
03f9a37cc570fb91b15e2a4a187e114b1ceb3a87
-
SHA256
5b4ad8387b7b97d12ff5510a38be46e15b1e6544cd0381d6eb3bf2d3e59dc320
-
SHA512
897d25cc72629420ae52032b3c4345bbd45f7d3b134b77504b0c0436a03ca661be3ce936c9402d60efabf29f50fd20c8ff5f8d4d0c29b1f04b721eb968297629
-
SSDEEP
24576:uRBh39VtPpFgeBF4felGQtLgR6tZXQrq+Vnd:uxbdu2btEsUPd
Behavioral task
behavioral1
Sample
1e3a251949d7cf01fc05922cb503b90c_JaffaCakes118.exe
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
1e3a251949d7cf01fc05922cb503b90c_JaffaCakes118.exe
Resource
win10v2004-20240611-en
Malware Config
Targets
-
-
Target
1e3a251949d7cf01fc05922cb503b90c_JaffaCakes118
-
Size
1.2MB
-
MD5
1e3a251949d7cf01fc05922cb503b90c
-
SHA1
03f9a37cc570fb91b15e2a4a187e114b1ceb3a87
-
SHA256
5b4ad8387b7b97d12ff5510a38be46e15b1e6544cd0381d6eb3bf2d3e59dc320
-
SHA512
897d25cc72629420ae52032b3c4345bbd45f7d3b134b77504b0c0436a03ca661be3ce936c9402d60efabf29f50fd20c8ff5f8d4d0c29b1f04b721eb968297629
-
SSDEEP
24576:uRBh39VtPpFgeBF4felGQtLgR6tZXQrq+Vnd:uxbdu2btEsUPd
Score10/10-
Modifies firewall policy service
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Matrix ATT&CK v13
Persistence
Create or Modify System Process
1Windows Service
1Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Privilege Escalation
Create or Modify System Process
1Windows Service
1Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1