6b114d9dff993d467183b0d5480558a18d3eeb234ab6dc72afb6a5d1549a28ee | Triage

Sharing

General

Target

1626d4eb8660398cf0db8825bd5d7397_JaffaCakes118
Size

120KB
Sample

240627-qmdq8stblc
MD5

1626d4eb8660398cf0db8825bd5d7397
SHA1

56171b38ff039b6086ae415067c514a5d6cac787
SHA256

6b114d9dff993d467183b0d5480558a18d3eeb234ab6dc72afb6a5d1549a28ee
SHA512

08909d9979404208fb8a4fbee49bb4466a0c61e031b6f3d750c083d28d94e54df298f8095e0bb140eb17fd00b7fa40538a07f03c34b227182013c2ea0b70cb4b
SSDEEP

1536:5lMA8HwucgLBJGkG2YwoeNX1FmcnuFcXHPK:6HjPab2XNX14cu+XS

Score

6^/10

adware stealer

Malware Config

Targets

- Target
  
  1626d4eb8660398cf0db8825bd5d7397_JaffaCakes118
- Size
  
  120KB
- MD5
  
  1626d4eb8660398cf0db8825bd5d7397
- SHA1
  
  56171b38ff039b6086ae415067c514a5d6cac787
- SHA256
  
  6b114d9dff993d467183b0d5480558a18d3eeb234ab6dc72afb6a5d1549a28ee
- SHA512
  
  08909d9979404208fb8a4fbee49bb4466a0c61e031b6f3d750c083d28d94e54df298f8095e0bb140eb17fd00b7fa40538a07f03c34b227182013c2ea0b70cb4b
- SSDEEP
  
  1536:5lMA8HwucgLBJGkG2YwoeNX1FmcnuFcXHPK:6HjPab2XNX14cu+XS
Score

6^/10

adware stealer
- Installs/modifies Browser Helper Object
  BHOs are DLL modules which act as plugins for Internet Explorer.
  stealer adware
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Browser Extensions

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2