Overview

overview

6

Static

static

1

8bf403152d...18.dll

windows7-x64

6

8bf403152d...18.dll

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8bf403152d79ac75f5e3388be1fcddbd_JaffaCakes118

  • Size

    1.8MB

  • Sample

    240601-12y1tsha89

  • MD5

    8bf403152d79ac75f5e3388be1fcddbd

  • SHA1

    db50d8b2f01919c591cc61ee57a437ea7a352508

  • SHA256

    7595c1888f316cc1a12ff50a0b6e74a15ba4fb4772c567d005722d0d0e00d5fa

  • SHA512

    18f6814df2a4d9e12e035b835147cb9e22282512fe5a37e605227e840dd565978ac006457f5f5d5e99384bdb6722ff4f3be500a756095aa58005b15f7e34f318

  • SSDEEP

    49152:gwKkhgxIUNXH3OCd8wPc24TaidQTkMUE0:gwKkhydMV

Score
6/10
adwarepersistencestealer

Malware Config

Targets

    • Target

      8bf403152d79ac75f5e3388be1fcddbd_JaffaCakes118

    • Size

      1.8MB

    • MD5

      8bf403152d79ac75f5e3388be1fcddbd

    • SHA1

      db50d8b2f01919c591cc61ee57a437ea7a352508

    • SHA256

      7595c1888f316cc1a12ff50a0b6e74a15ba4fb4772c567d005722d0d0e00d5fa

    • SHA512

      18f6814df2a4d9e12e035b835147cb9e22282512fe5a37e605227e840dd565978ac006457f5f5d5e99384bdb6722ff4f3be500a756095aa58005b15f7e34f318

    • SSDEEP

      49152:gwKkhgxIUNXH3OCd8wPc24TaidQTkMUE0:gwKkhydMV

    Score
    6/10
    adwarepersistencestealer

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Browser Extensions

1
T1176

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Privilege Escalation

Boot or Logon Autostart Execution

1
T1547

Registry Run Keys / Startup Folder

1
T1547.001

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks