Overview

overview

10

Static

static

3

fb77b787b6...18.exe

windows7-x64

10

fb77b787b6...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    fb77b787b6b59a5b6e1b7f4b6efc504a_JaffaCakes118

  • Size

    184KB

  • Sample

    240420-adghrsbh6y

  • MD5

    fb77b787b6b59a5b6e1b7f4b6efc504a

  • SHA1

    2d31ccdf2713623bb6de3bf2028f347014a4212d

  • SHA256

    9be7205d70a04585564a15dcfe057cd8a91c250190d90737da613537bdea1449

  • SHA512

    e2b33ee85ceb99b869ff108ce26d9e03b7ca441d556e7665af26118f699de1b9bacce725b3aff52c77b68ee4b5d55bda3088955cc826ff04a2832ce5799a86f9

  • SSDEEP

    3072:xb8GZwHueA6NP2r1OJsrDLsvsWqmno1PHA1Lfx5fqyB6PID/p5UkgvmODt:xbTK+6A1g8XsDo1PHAH5fKQp53gvv

Score
10/10
persistencespywarestealerupx

Malware Config

Targets

    • Target

      fb77b787b6b59a5b6e1b7f4b6efc504a_JaffaCakes118

    • Size

      184KB

    • MD5

      fb77b787b6b59a5b6e1b7f4b6efc504a

    • SHA1

      2d31ccdf2713623bb6de3bf2028f347014a4212d

    • SHA256

      9be7205d70a04585564a15dcfe057cd8a91c250190d90737da613537bdea1449

    • SHA512

      e2b33ee85ceb99b869ff108ce26d9e03b7ca441d556e7665af26118f699de1b9bacce725b3aff52c77b68ee4b5d55bda3088955cc826ff04a2832ce5799a86f9

    • SSDEEP

      3072:xb8GZwHueA6NP2r1OJsrDLsvsWqmno1PHA1Lfx5fqyB6PID/p5UkgvmODt:xbTK+6A1g8XsDo1PHAH5fKQp53gvv

    Score
    10/10
    persistencespywarestealerupx

    • Modifies WinLogon for persistence

      persistence

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks