3871ca5cb112077c12d6f1eed51c3b7e102d17a9cc1a2c636ff274752403ed36 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e9e67f9aea33168c2b3bddd92f326ec1_JaffaCakes118
Size

21KB
Sample

240409-nq4eysdh69
MD5

e9e67f9aea33168c2b3bddd92f326ec1
SHA1

d5c13ece6bb59f86d70fd8d7e3004183e6af8004
SHA256

3871ca5cb112077c12d6f1eed51c3b7e102d17a9cc1a2c636ff274752403ed36
SHA512

b1633fae0a6d7834916f9b5360a307be01f7659fec3d85b33c1ad0b51c6cfc3acda56b13141055b5c0b009f75b24694822d9ac664815625b13683333630008ee
SSDEEP

384:TPyZNjtU2mjpBhjji93NNiW3vBhzaCxeobUickYTzrNx2kP4+b:byZMfcNiOvBJ/xeRiVYvrNwkg+

Score

6^/10

adware stealer

Malware Config

Targets

- Target
  
  e9e67f9aea33168c2b3bddd92f326ec1_JaffaCakes118
- Size
  
  21KB
- MD5
  
  e9e67f9aea33168c2b3bddd92f326ec1
- SHA1
  
  d5c13ece6bb59f86d70fd8d7e3004183e6af8004
- SHA256
  
  3871ca5cb112077c12d6f1eed51c3b7e102d17a9cc1a2c636ff274752403ed36
- SHA512
  
  b1633fae0a6d7834916f9b5360a307be01f7659fec3d85b33c1ad0b51c6cfc3acda56b13141055b5c0b009f75b24694822d9ac664815625b13683333630008ee
- SSDEEP
  
  384:TPyZNjtU2mjpBhjji93NNiW3vBhzaCxeobUickYTzrNx2kP4+b:byZMfcNiOvBJ/xeRiVYvrNwkg+
Score

6^/10

adware stealer
- Installs/modifies Browser Helper Object
  BHOs are DLL modules which act as plugins for Internet Explorer.
  stealer adware
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Browser Extensions

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2