22dbd5c8dfac95b1d01c38a61a1d8d0c582ca150bc4aaae714d02e96f432e3ce

Sharing

Copy URL

Twitter E-mail

General

Target

e8fca935532bb7be1c2f0b6e1b4ed3bc_JaffaCakes118
Size

273KB
Sample

240409-crra8sbe79
MD5

e8fca935532bb7be1c2f0b6e1b4ed3bc
SHA1

1872b6dcd12759555d86a86274e5a3d723a77d61
SHA256

22dbd5c8dfac95b1d01c38a61a1d8d0c582ca150bc4aaae714d02e96f432e3ce
SHA512

331befcedc9f7c26be64d9cd341882b68dee3a58c00b60d4b7ce1c9833da707e517dafb1dcebe8b6fd9a6171f70121881ced32f50529f20a91e9a04952cb2bf2
SSDEEP

6144:+sPKexlzOWwJ9Eb4D2JhbnJJj89grMzUumpVksU/:Pbtwwb4kxP0sMwfksc

Score

7^/10

adware stealer

Malware Config

Targets

- Target
  
  e8fca935532bb7be1c2f0b6e1b4ed3bc_JaffaCakes118
- Size
  
  273KB
- MD5
  
  e8fca935532bb7be1c2f0b6e1b4ed3bc
- SHA1
  
  1872b6dcd12759555d86a86274e5a3d723a77d61
- SHA256
  
  22dbd5c8dfac95b1d01c38a61a1d8d0c582ca150bc4aaae714d02e96f432e3ce
- SHA512
  
  331befcedc9f7c26be64d9cd341882b68dee3a58c00b60d4b7ce1c9833da707e517dafb1dcebe8b6fd9a6171f70121881ced32f50529f20a91e9a04952cb2bf2
- SSDEEP
  
  6144:+sPKexlzOWwJ9Eb4D2JhbnJJj89grMzUumpVksU/:Pbtwwb4kxP0sMwfksc
Score

7^/10
- Loads dropped DLL
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/DLLWebCount.dll
- Size
  
  28KB
- MD5
  
  d825e4003d1697fd4bc45361e222746c
- SHA1
  
  e9d4b1073aac15d4dbb430471fcaea549e633d13
- SHA256
  
  c79e4be74eecf16f2f7f1d39724c938bf372e9568bb96fa4610926a57fe323f5
- SHA512
  
  7740a18cae5a42963c748a49ac6175482c93b34dce703a7cf24f5828ee6cdc19eb2669a634b64c2a4c861272f7e9b9e943455195a7cd6afcd8fa5586744eb86f
- SSDEEP
  
  96:unHQKcixlYedrGcCM4JuGylQu4BudGaFHiYueH:uHJciUM4JmuLYdbFHiRe
Score

3^/10
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/InstallOptions.dll
- Size
  
  14KB
- MD5
  
  0dc0cc7a6d9db685bf05a7e5f3ea4781
- SHA1
  
  5d8b6268eeec9d8d904bc9d988a4b588b392213f
- SHA256
  
  8e287326f1cdd5ef2dcd7a72537c68cbe4299ceb1f820707c5820f3aa6d8206c
- SHA512
  
  814dd17ebb434f4a3356f716c783ab7f569f9ee34ce5274fa50392526925f044798f8006198ac7afe3d1c2ca83a2ca8c472ca53fec5f12bbfbbe0707abacd6b0
- SSDEEP
  
  192:n6d+dHXLHQOPiY53uiUdigyU+WsPdc/A1A+2jPK72dwF7dBEnbok:n6UdHXcIiY535zBt2jP+BEnbo
Score

3^/10
behavioral5 behavioral6
- Target
  
  inshopping.dll
- Size
  
  176KB
- MD5
  
  2fad169cbb625c30126ba12f86f5adec
- SHA1
  
  39edf2e85001a4bf38fe556912918fcabd56978f
- SHA256
  
  64515e59a4e3caf51cc79907b54558409e04c258797ba62f6014f6994fdba3f2
- SHA512
  
  d71fcc3de231061e7a06ac16f2d4cfd4fdd0c822cf0e537768523aa154382be65d5647834354c8214eb214f11c5554c4b8ff118b4c9ded33eb4261b35cb22f82
- SSDEEP
  
  3072:XEQaxjsMwuvKOJvwRrRcAMtYG5igUkTq1WMhSOAQRbO:l0js2vKO063YG8gYWkN
Score

6^/10

adware stealer
- Installs/modifies Browser Helper Object
  BHOs are DLL modules which act as plugins for Internet Explorer.
  stealer adware
behavioral7 behavioral8
- Target
  
  inshoppingup.exe
- Size
  
  332KB
- MD5
  
  3c114d02950b361deca9f879c6ae53ad
- SHA1
  
  ff71b3cb9952c5c820145f7cc4c11f9fbba9ce42
- SHA256
  
  1832bf10978b2cd9011de028e95303f5d4b6b87b0ec937f62158c42702d94917
- SHA512
  
  6205464ddd44cbc3704dc77da5eb2347629b17bafa8caa6b4d392f8ab4e23849a04d828a01f641fa676572097579a98f5b00994be3a285a6c00f3b4298be3570
- SSDEEP
  
  6144:ZlZmOtE+mfTITM6TmfmX8pyhIEQItA+cpEPo:ZlZYfTgmfmMpy3tAvEPo
Score

1^/10
behavioral10 behavioral9
- Target
  
  uninstall.exe
- Size
  
  57KB
- MD5
  
  17736472ef809e77dd18991c32d4e321
- SHA1
  
  1776bfd72bb1f3716f4e060a290499d3cface61c
- SHA256
  
  063e7c2d04dd499999547104019da64bb9b1cefcd7f631019be3305864020270
- SHA512
  
  290b1193683fb1ce511c04c0e20b201835c617bd89f3341e16249721b5fea1f9caffd62115f80056ff366001d21970e4fd602bac8b671fc0db894e24be271798
- SSDEEP
  
  768:A1cVhpQI2EQK0iPDh84nScF15GYbWjXO3XJ23ggoIX0+s3OXy0OBKQHi/5Z3se+q:+QpQ5EP0ijnRTXJ23ggwJn0Mibr
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
behavioral11 behavioral12
- Target
  
  $PLUGINSDIR/DLLWebCount.dll
- Size
  
  28KB
- MD5
  
  d825e4003d1697fd4bc45361e222746c
- SHA1
  
  e9d4b1073aac15d4dbb430471fcaea549e633d13
- SHA256
  
  c79e4be74eecf16f2f7f1d39724c938bf372e9568bb96fa4610926a57fe323f5
- SHA512
  
  7740a18cae5a42963c748a49ac6175482c93b34dce703a7cf24f5828ee6cdc19eb2669a634b64c2a4c861272f7e9b9e943455195a7cd6afcd8fa5586744eb86f
- SSDEEP
  
  96:unHQKcixlYedrGcCM4JuGylQu4BudGaFHiYueH:uHJciUM4JmuLYdbFHiRe
Score

3^/10
behavioral13 behavioral14
- Target
  
  $PLUGINSDIR/IEKill.dll
- Size
  
  24KB
- MD5
  
  86acfaa6a25bca6031b303b5bdcc232b
- SHA1
  
  819fd291e5403d8915fe5984e89ee1f6a496a480
- SHA256
  
  e4a0127903902f485eaf29d76052c03daeaa096234baa03c6ba5f3ddb9f233e6
- SHA512
  
  521bd61d92d07e520fc6ba149847d67d5ac46bc1eb04bc33e7576776b7dd20cdbc059e79c6f857659a25c098d0395559f92c2d92274bde97acc7f224aa6e3b4a
- SSDEEP
  
  96:NK6SSNF28W2z/Zq6YTgdY8BKZ8BKoIhsdQculsG51m:06BNRjZqeIT5hsdQcNsk
Score

1^/10
behavioral15 behavioral16
- Target
  
  $PLUGINSDIR/InstallOptions.dll
- Size
  
  14KB
- MD5
  
  0dc0cc7a6d9db685bf05a7e5f3ea4781
- SHA1
  
  5d8b6268eeec9d8d904bc9d988a4b588b392213f
- SHA256
  
  8e287326f1cdd5ef2dcd7a72537c68cbe4299ceb1f820707c5820f3aa6d8206c
- SHA512
  
  814dd17ebb434f4a3356f716c783ab7f569f9ee34ce5274fa50392526925f044798f8006198ac7afe3d1c2ca83a2ca8c472ca53fec5f12bbfbbe0707abacd6b0
- SSDEEP
  
  192:n6d+dHXLHQOPiY53uiUdigyU+WsPdc/A1A+2jPK72dwF7dBEnbok:n6UdHXcIiY535zBt2jP+BEnbo
Score

3^/10
behavioral17 behavioral18
- Target
  
  $PLUGINSDIR/SelfDelete.dll
- Size
  
  24KB
- MD5
  
  7bf1bd7661385621c7908e36958f582e
- SHA1
  
  43242d7731c097e95fb96753c8262609ff929410
- SHA256
  
  c0ad2c13d48c9fe62f898da822a5f08be3bf6c4e2c1c7ffdf7634f2ca4a8859e
- SHA512
  
  8317af5cc3ac802eb095f3fa8cc71daa1265ca58fead031c07872f3d4bb07663a7002ae734fad392a7617f0923fe0caf1f54ed55afdf8516a6a08e202d86fa7f
- SSDEEP
  
  96:1dIrJYYrzPpqAAZ9sNIaI2y9WulXEGNRrG:nuYATpq/viyYuEYRr
Score

1^/10
behavioral19 behavioral20

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Browser Extensions

T1176

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Subvert Trust Controls

T1553

Install Root Certificate

T1553.004

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Loads dropped DLL

Installs/modifies Browser Helper Object

Executes dropped EXE

Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20