Overview

overview

7

Static

static

7

eb78bdf9fb...18.exe

windows7-x64

7

eb78bdf9fb...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    eb78bdf9fbafea860d1292715ae42375_JaffaCakes118

  • Size

    2.2MB

  • Sample

    240410-trc72sdf57

  • MD5

    eb78bdf9fbafea860d1292715ae42375

  • SHA1

    c86ff351adee5bdb42e989020b3d35de058426fd

  • SHA256

    fcaab7d20b29355a1d50b575784c54b261bd708fa1465e0d6dd2b6fb8caa51c7

  • SHA512

    112afd39b813350dcb8cc0dd9192a7da3555666ee6dd833afb6a2d4bcd9aa6b551ac8651a83eba529d6ae6a324bae95c93515bf1dfec72891a890f2cb9adeab0

  • SSDEEP

    49152:yg2mMriuigTg2mMriuAZWSytLdnn1d3So72nMbzD:MKiKjZstJnnh7DD

Score
7/10
aspackv2persistencespywarestealer

Malware Config

Targets

    • Target

      eb78bdf9fbafea860d1292715ae42375_JaffaCakes118

    • Size

      2.2MB

    • MD5

      eb78bdf9fbafea860d1292715ae42375

    • SHA1

      c86ff351adee5bdb42e989020b3d35de058426fd

    • SHA256

      fcaab7d20b29355a1d50b575784c54b261bd708fa1465e0d6dd2b6fb8caa51c7

    • SHA512

      112afd39b813350dcb8cc0dd9192a7da3555666ee6dd833afb6a2d4bcd9aa6b551ac8651a83eba529d6ae6a324bae95c93515bf1dfec72891a890f2cb9adeab0

    • SSDEEP

      49152:yg2mMriuigTg2mMriuAZWSytLdnn1d3So72nMbzD:MKiKjZstJnnh7DD

    Score
    7/10
    aspackv2persistencespywarestealer

    • ASPack v2.12-2.42

      Detects executables packed with ASPack v2.12-2.42

      aspackv2

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks