General
-
Target
1f5f9a4c25219df4c5db7f38d1334130_JaffaCakes118
-
Size
191KB
-
Sample
240702-p2mr1sxbqk
-
MD5
1f5f9a4c25219df4c5db7f38d1334130
-
SHA1
76c719e81365b97b5403b41f7e6af8a9fc60703f
-
SHA256
db4bdb21acad161bc2bd6af757ac33c325c490a3e3fff062d0c18203de7b5048
-
SHA512
f728df856db47c8c655a0d2cfb14cdb960c43d6dc5491cd077339879e96d2bb323500fbfb21521b3eb336e988e2217626ddd07757b4e7c67f0053b26dffe62f8
-
SSDEEP
3072:cOBOLWXivHYMzv2HvP5YeBTEEP2831Vr/rF8QOSta7WejTVYqEEDYAfUG6mOr:cOp8HpzdQOStK9EGPq
Static task
static1
Behavioral task
behavioral1
Sample
1f5f9a4c25219df4c5db7f38d1334130_JaffaCakes118.dll
Resource
win7-20240611-en
Malware Config
Targets
-
-
Target
1f5f9a4c25219df4c5db7f38d1334130_JaffaCakes118
-
Size
191KB
-
MD5
1f5f9a4c25219df4c5db7f38d1334130
-
SHA1
76c719e81365b97b5403b41f7e6af8a9fc60703f
-
SHA256
db4bdb21acad161bc2bd6af757ac33c325c490a3e3fff062d0c18203de7b5048
-
SHA512
f728df856db47c8c655a0d2cfb14cdb960c43d6dc5491cd077339879e96d2bb323500fbfb21521b3eb336e988e2217626ddd07757b4e7c67f0053b26dffe62f8
-
SSDEEP
3072:cOBOLWXivHYMzv2HvP5YeBTEEP2831Vr/rF8QOSta7WejTVYqEEDYAfUG6mOr:cOp8HpzdQOStK9EGPq
-
Modifies WinLogon for persistence
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-