General

  • Target

    0314f2f1a73bff966ec33c71da706beb_JaffaCakes118

  • Size

    18KB

  • Sample

    240620-ftlqbazhnh

  • MD5

    0314f2f1a73bff966ec33c71da706beb

  • SHA1

    8bcd61839c1b390fc38d5d432d6efa0130be4d2d

  • SHA256

    d57dd43706174a6b60a9d2f680ff3d3e30d4c519e75affeeb9ad7c300719ef4a

  • SHA512

    4e26b532d80c21992a8a5abfeb82041aafa2d7d2aea822009c0b08cf91b757dd8e108c3aec7b2413ca8eecc44bd72c939b2a166fbbc932c3b324c0a3578b22e4

  • SSDEEP

    384:ANA31mTLfCM/DxvdF08Q5HZsTUg0q1JqbhwEosKPwW3LEeewkgn9aNJawcudoD7b:z3sfaHZsTN0wzoCLZewk8AnbcuyD7U

Malware Config

Targets

    • Target

      0314f2f1a73bff966ec33c71da706beb_JaffaCakes118

    • Size

      18KB

    • MD5

      0314f2f1a73bff966ec33c71da706beb

    • SHA1

      8bcd61839c1b390fc38d5d432d6efa0130be4d2d

    • SHA256

      d57dd43706174a6b60a9d2f680ff3d3e30d4c519e75affeeb9ad7c300719ef4a

    • SHA512

      4e26b532d80c21992a8a5abfeb82041aafa2d7d2aea822009c0b08cf91b757dd8e108c3aec7b2413ca8eecc44bd72c939b2a166fbbc932c3b324c0a3578b22e4

    • SSDEEP

      384:ANA31mTLfCM/DxvdF08Q5HZsTUg0q1JqbhwEosKPwW3LEeewkgn9aNJawcudoD7b:z3sfaHZsTN0wzoCLZewk8AnbcuyD7U

    • Adds policy Run key to start application

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v15

Tasks