Overview

overview

7

Static

static

7

e75925bd0b...18.exe

windows7-x64

7

e75925bd0b...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e75925bd0b5a71eefc710c994d1c5840_JaffaCakes118

  • Size

    51KB

  • Sample

    240408-njjrzabc7w

  • MD5

    e75925bd0b5a71eefc710c994d1c5840

  • SHA1

    7d5aeaf365c03d4b593f81b875c48d8f96a35199

  • SHA256

    abb4ff92e64a7e5af45ad8fb321b15151ca7c8bc994227d7080338ad5e002b39

  • SHA512

    f064fd0fc4130b21bf5dc4587d0ea3ccf586203b5e52458ae24261534c3ba8f4df4d289c53e2886efb92d4093af1d5289d24f1f0522168ebb1db0f3734535890

  • SSDEEP

    1536:xPcVo6r7S/rabo+trbmWdzPl29OBee06QFnouy8y6zMnO:i7cWboarbzKOBj0Zdoutv

Score
7/10
spywarestealerupx

Malware Config

Targets

    • Target

      e75925bd0b5a71eefc710c994d1c5840_JaffaCakes118

    • Size

      51KB

    • MD5

      e75925bd0b5a71eefc710c994d1c5840

    • SHA1

      7d5aeaf365c03d4b593f81b875c48d8f96a35199

    • SHA256

      abb4ff92e64a7e5af45ad8fb321b15151ca7c8bc994227d7080338ad5e002b39

    • SHA512

      f064fd0fc4130b21bf5dc4587d0ea3ccf586203b5e52458ae24261534c3ba8f4df4d289c53e2886efb92d4093af1d5289d24f1f0522168ebb1db0f3734535890

    • SSDEEP

      1536:xPcVo6r7S/rabo+trbmWdzPl29OBee06QFnouy8y6zMnO:i7cWboarbzKOBj0Zdoutv

    Score
    7/10
    spywarestealerupx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops desktop.ini file(s)

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks