86d30b05342c65e4576114efa36272aea49e5696fd70c57b871a81f09d8d2e75

Sharing

Copy URL

Twitter E-mail

General

Target

0b5a48d3e09ef74bbfd04e1f0a3f5cc5_JaffaCakes118
Size

1.2MB
Sample

240501-h4nzjaaf5s
MD5

0b5a48d3e09ef74bbfd04e1f0a3f5cc5
SHA1

b73b8cdf480058d63571aeb2186998f722c442ea
SHA256

86d30b05342c65e4576114efa36272aea49e5696fd70c57b871a81f09d8d2e75
SHA512

04678275147a1c695811236a83aa0467f1671b8c0a1b1443a4c9c7fadc25bb88315eb7f60d2aa0e0899015ab4425f7dcbce39d5774df66efa2f29279fc60438f
SSDEEP

24576:oVcaNKcudepFgZe+UQ8rKyDUfxPMDsl+nblIDO5PhW1Eu/VvzxD15sm:ucaNgu6ZxL8vE+qulbW1Eun1im

Score

10^/10

Malware Config

Targets

- Target
  
  GreenBrowserGB_6.9.1223/GreenBrowser.exe
- Size
  
  1.3MB
- MD5
  
  ad08612709dd31ca3c1ac67fcc2ffddc
- SHA1
  
  f866089d3a7d614e742f8b93abf62e70514bdb2a
- SHA256
  
  e07167f7255f5c110158d298f13234aaf4f08eb63a942c6b77cfb332a431ed0a
- SHA512
  
  2f247822692fd1e719822fd62383f32fac7af4bf3b14a309d92358de88b1066238a34fd355a8fec6523aa19f106296997f1e3617e009987d7d6d5835aa12603b
- SSDEEP
  
  24576:n2rrXjv7norKdLMi9ZQ4jzFyEVqXVhQLVIaWSbyQ/9Wtgmz:2rXjv7n6KhMIIZ91SbyQ1Xm
Score

3^/10
behavioral1 behavioral2
- Target
  
  GreenBrowserGB_6.9.1223/Plugin/Alexa/alexa.htm
- Size
  
  278B
- MD5
  
  651aaba6a04e27645f02c6203f2d6b7f
- SHA1
  
  d4a8ff9d9118feafd8623e5ded06203466082bef
- SHA256
  
  a371ebfc442fdc8dd290cc4a4cd21fe999c1621b573fb8f444165aaf87b18193
- SHA512
  
  394b2f593ce604d599ad92fd92b0597479972412e6c37d8242374f7b3d21d80ab4ef99a6899914cd1eb186976b482039ab1f25f6459ff8263b8a96646ba08c38
Score

1^/10
behavioral3 behavioral4
- Target
  
  GreenBrowserGB_6.9.1223/Plugin/GrayColor/script.htm
- Size
  
  80B
- MD5
  
  75e4b2894791bec587fbfa71799c22b2
- SHA1
  
  4972399ea90acddd622b8847b0129d30120b6ba1
- SHA256
  
  be8a3b60f75e83d94f5b397b271fd7847ac6c3283bb1f3a8fee5a3f59958b922
- SHA512
  
  4cbb15df5d38405dfb418acac5c97a0a3dbcdf5679db392d63f4c3619f708cc742dbdc0ab980b0c6131530e3a6fa8a918fb5cf2ed9f906894c1518f9c28e5178
Score

1^/10
behavioral5 behavioral6
- Target
  
  GreenBrowserGB_6.9.1223/Plugin/QuickMute+/nircmd.exe
- Size
  
  43KB
- MD5
  
  84d499f558570c32f4cb100a9124890b
- SHA1
  
  9adfc7ab66348d84ebdd9c1e8093cad4cc8485ef
- SHA256
  
  31b3b228382dc359f22ae97b2602eee81dc743fb21196061eacc6619533881f5
- SHA512
  
  560aaadebcbd425d35fc3a567c987a5f15a5f091962328f0479c1ec2378c732cca892eb3252179c8895413b0f3d08f44fbcf8c9d2375877c81622f42e6549c86
- SSDEEP
  
  768:e4OBw5XDtS0d0xr6xczY6jU19q2T5D8EZdZzaJqn:+wtDtS0yV6B6A19FTiEZXaJqn
Score

9^/10

upx
- Nirsoft
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral7 behavioral8
- Target
  
  GreenBrowserGB_6.9.1223/Plugin/SnapShot/SnapShot.exe
- Size
  
  247KB
- MD5
  
  cb1a571868f81e6bfd0d89e98c675080
- SHA1
  
  7f6ef8368d2a71df930df1c2e2ef4c76f0600d6f
- SHA256
  
  6d661015af6d7df0b48f665ca8441a88a15da345e025cbac9641427b922ec980
- SHA512
  
  6aaf1f8a269d12a26611ea19b3e5d7f8929500c3881ee50b41ea7735b0e3a4ad6b734dc0d5fee810529e585b255a0a551d5ed3665a0e6b2679aa73f00c6f2072
- SSDEEP
  
  6144:X/pMXZRjPjBK3IuDE4zmVhtqYMVOMUmGhp0oKNIi0:BMpRjPdK3IuDMtqhXOdiIi0
Score

1^/10
behavioral10 behavioral9
- Target
  
  GreenBrowserGB_6.9.1223/Plugin/Tools/FavoritesView.exe
- Size
  
  47KB
- MD5
  
  41c6ec5614168df39701554b4e221f6c
- SHA1
  
  fb27e3b7e20c8e9f6cbe8efb576805774561ca61
- SHA256
  
  d87aafe043c8215feaf69ef4becf0d5690e5f14d2d3c42da376146a07803a4e0
- SHA512
  
  195caa5ea2f328e8f1fa1d229b260f01873359138519009ffdef562b1bc29b0873988a68dcb6956f863757816c9ba5e1a56d371dd68533048945760bec4cdb05
- SSDEEP
  
  768:/joVeGf9JarClKvNcxmWrW+Pk28O8BKLEawmPaxvDM4pEguuxiha5z8:Bw9oqxm8Wys9BK7wmixLMbFX68
Score

9^/10

spyware stealer
- Nirsoft
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral11 behavioral12
- Target
  
  GreenBrowserGB_6.9.1223/Plugin/Tools/QuickMute.exe
- Size
  
  20KB
- MD5
  
  e867ad5a14e04dd053d795a7cd827bda
- SHA1
  
  c8578d39e38e99b1ac3dd990633e67012acf3bfe
- SHA256
  
  836595e19f7c76657ea89c3c28e43fb435396fd895e62250148a74ae9ffa3346
- SHA512
  
  a39afaf29c5de64206d1d6b92aef01b4f36b0c8c25426fbd4693862633bb0a73062862f78fb30b3003d2f351161e44f312a4ab7b0270d88856a21447d35ecc5b
- SSDEEP
  
  192:Jf8sPlhLDwngSnxivaDIVD89P1oynyEbf5NkVhs5fWXeE:+evDEOI14EjHkvs5fWXe
Score

1^/10
behavioral13 behavioral14
- Target
  
  GreenBrowserGB_6.9.1223/Plugin/Tools/QuickTools.exe
- Size
  
  32KB
- MD5
  
  5932f03b532c7d0db9e2af3d7b91e2f9
- SHA1
  
  0c82934034520705442feee74a5736ee76fe5751
- SHA256
  
  134d2a2691b32b2d8f3b802513d7b905a2fc7c7faf7e73760ff52f6a1150e9bc
- SHA512
  
  17750cdc99bdbddb7948a019c015641fede2b51e7c653e5d9a4247e6684772083b0e494c946bf0b82d7edd08ec78dd6e1967a520100c994eb89d143af768c6bc
- SSDEEP
  
  384:NUbmnTRNIXNAxvr6+e9Pfqbn1R+mIz3h2iwhAf0WIGompb:GbmnTTIXGx+ha5Em0h2WR
Score

3^/10
behavioral15 behavioral16
- Target
  
  GreenBrowserGB_6.9.1223/Resource/CollectorScript.txt.default
- Size
  
  2KB
- MD5
  
  8afeedf8962c7f64cbbd96123e97aaf8
- SHA1
  
  a4602eda15ff720c4aeceb27e714ed94385c470a
- SHA256
  
  f3aedd05a70b7784ec8252e22c3b7d9ee22460efa7e8a005fda7627eb8e1ad7e
- SHA512
  
  00865ec1a4c5776252963c0f349afacea448ca6d56d54930141b7a4b845973be26be6ac2d1a6aa26c71b67fe9e5152d491a365dcb7cd83e813dc665b179fa4cd
Score

1^/10
behavioral17 behavioral18
- Target
  
  GreenBrowserGB_6.9.1223/Resource/DownManager.ini.default
- Size
  
  5KB
- MD5
  
  ecf341069b669815ef32b31c120a58c5
- SHA1
  
  84a30d4749197d0378a35771ef1188e4efc5df00
- SHA256
  
  a114ed336da7523665a6db0c7a445a66cd45113d2a66b84520a1c877571d11c5
- SHA512
  
  c56462147065af47f95918a0f79cbab819ee483d67d6aa7eca028bf48a3a21ca1bdb0a05975d7571250eecf0138ecbea3dd6d897205a7fb39a57813bc2e4be0c
- SSDEEP
  
  96:9jTRJZcnhgkLMvUErMr3UqeR+l6I7hXxazF9/Z+oZ:9Bnyu9vUW+3LI8/7yXws
Score

1^/10
behavioral19 behavioral20
- Target
  
  GreenBrowserGB_6.9.1223/Resource/GreenBrowserUpdate.exe
- Size
  
  15KB
- MD5
  
  6002be60f31c690302d407d4a6f19135
- SHA1
  
  840f57f4c4b76af67977c854591249a3c28ce740
- SHA256
  
  899e8352db361751609f320de0846b159fb65415dc0ef5a7d28b67a01b5c833a
- SHA512
  
  fbaa0f208ea790bd5aba61ac29bf1b5e1bc8fcb567945d564d458de70e8e08f952668c92943a57e6571ef6a1e4c277a633e0b9ca14630291f0e11a0f3c58dfb4
- SSDEEP
  
  384:bJqjI7YmhZ5HK3x2Axvr6+e9Pfqbn1xGQHIZm:L7ZAhx+ha5X+m
Score

1^/10
behavioral21 behavioral22
- Target
  
  GreenBrowserGB_6.9.1223/Resource/GreenImageConvert.exe
- Size
  
  13KB
- MD5
  
  e1f541b906d77535632a8a9846f6dcce
- SHA1
  
  62aa39fab81a261425354bdc9396391bd1473c07
- SHA256
  
  4f3f4935d62552ff7d8ff44077affc6d267df391d53cc91e5fc75a1d4e6fce60
- SHA512
  
  a47693e92bbf409817b30f4c01449f5e8b5373dbab1497d06ea42dab8bc2293326ebf11bb12c961ec45f28936eeae07c9f6bfa85e6d9a7083908236a72dec9a0
- SSDEEP
  
  192:3Azz63OYrR3pGVo6yRGIPVAxPwCMrpY7e8LqPZo5LdCfq1Rn6O33Xbn:uzCdR3p/LgYAxPr6+e9Pfqbn13Xb
Score

1^/10
behavioral23 behavioral24
- Target
  
  GreenBrowserGB_6.9.1223/Resource/Proxy.ini.default
- Size
  
  5KB
- MD5
  
  b4d388ac2e5dfeee59fe16063c422a47
- SHA1
  
  c95b48b53a4aeed0d6bc3e7d319a25e4aad85996
- SHA256
  
  8b64d65cd6aeb828fcac8fc1c340bac92bbe5ff5810e75a64a8ce25281b34341
- SHA512
  
  07fd029889442c66b418bf4c245b6eba0f4be76b6a77965c2b300e8abf61bc839792a5686daf8cd93f969813c14500c2aaa4c1c5f5179091d60bafb8271fb6d4
- SSDEEP
  
  96:N00boyYNhns1pmT0QNjTVdT/MmAIFjpMubsAm6GcIGW17bs1rmOqnEmEfDbsSRt:503Nh+pu0iHHTk0FFMuPm6GcIGA76rmU
Score

1^/10
behavioral25 behavioral26
- Target
  
  GreenBrowserGB_6.9.1223/Resource/Resource.htm
- Size
  
  77B
- MD5
  
  544e60b9fc36d5243400e705ca149ba1
- SHA1
  
  63abe8bffd334d735803fc7e0c18a08edac30b39
- SHA256
  
  f8df6b49db3540f6023e515373f3886bf8f4179e773ed1f5a870e527e990b8cd
- SHA512
  
  fce5b3cbc88db36e0341b2db0248c0e93cb44b8191f4b816b77548d95bcc499f8459b8f8c030289727f5b80d2f20b3dfb16cada2f11247f2f72aa19659e5cdd1
Score

1^/10
behavioral27 behavioral28
- Target
  
  GreenBrowserGB_6.9.1223/User/CollectorScript.txt
- Size
  
  2KB
- MD5
  
  8afeedf8962c7f64cbbd96123e97aaf8
- SHA1
  
  a4602eda15ff720c4aeceb27e714ed94385c470a
- SHA256
  
  f3aedd05a70b7784ec8252e22c3b7d9ee22460efa7e8a005fda7627eb8e1ad7e
- SHA512
  
  00865ec1a4c5776252963c0f349afacea448ca6d56d54930141b7a4b845973be26be6ac2d1a6aa26c71b67fe9e5152d491a365dcb7cd83e813dc665b179fa4cd
Score

1^/10
behavioral29 behavioral30
- Target
  
  GreenBrowserGB_6.9.1223/User/DownManager.ini
- Size
  
  5KB
- MD5
  
  ecf341069b669815ef32b31c120a58c5
- SHA1
  
  84a30d4749197d0378a35771ef1188e4efc5df00
- SHA256
  
  a114ed336da7523665a6db0c7a445a66cd45113d2a66b84520a1c877571d11c5
- SHA512
  
  c56462147065af47f95918a0f79cbab819ee483d67d6aa7eca028bf48a3a21ca1bdb0a05975d7571250eecf0138ecbea3dd6d897205a7fb39a57813bc2e4be0c
- SSDEEP
  
  96:9jTRJZcnhgkLMvUErMr3UqeR+l6I7hXxazF9/Z+oZ:9Bnyu9vUW+3LI8/7yXws
Score

1^/10
behavioral31 behavioral32

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Unsecured Credentials

T1552

Credentials In Files

T1552.001

Discovery

Query Registry

T1012

System Information Discovery

T1082

Lateral Movement

Collection

Data from Local System

T1005

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Nirsoft

UPX packed file

Nirsoft

Reads user/profile data of web browsers

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

behavioral12

behavioral13

behavioral14

behavioral15

behavioral16

behavioral17

behavioral18

behavioral19

behavioral20

behavioral21

behavioral22

behavioral23

behavioral24

behavioral25

behavioral26

behavioral27

behavioral28

behavioral29

behavioral30

behavioral31

behavioral32