Overview

overview

7

Static

static

3

248ade85fb...18.exe

windows7-x64

7

248ade85fb...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    248ade85fbaff90a6873f850ec336032_JaffaCakes118

  • Size

    2.0MB

  • Sample

    240704-egqytsvfjh

  • MD5

    248ade85fbaff90a6873f850ec336032

  • SHA1

    407024c7150ed988220c067dba468e941d09272a

  • SHA256

    41382cfbae7f9f320aeff2643eaac03f9d1a2c7be805d84765e2b5d1390add6c

  • SHA512

    e0b3f8cd8c236aa1c41a06384e79afc918f2fde4db6cac877058a375a2fb91a1f0ff3f4fbe5f657ae63e96d6a7218a0a2704763d2a2914b969d40f99abe43a6d

  • SSDEEP

    24576:7C2efPHw24tP1TmKGqYT1cvigpOwdGfXGh2L73fMOpJC:7ifPqEDgpOwpOpJ

Score
7/10
adwarepersistencestealer

Malware Config

Targets

    • Target

      248ade85fbaff90a6873f850ec336032_JaffaCakes118

    • Size

      2.0MB

    • MD5

      248ade85fbaff90a6873f850ec336032

    • SHA1

      407024c7150ed988220c067dba468e941d09272a

    • SHA256

      41382cfbae7f9f320aeff2643eaac03f9d1a2c7be805d84765e2b5d1390add6c

    • SHA512

      e0b3f8cd8c236aa1c41a06384e79afc918f2fde4db6cac877058a375a2fb91a1f0ff3f4fbe5f657ae63e96d6a7218a0a2704763d2a2914b969d40f99abe43a6d

    • SSDEEP

      24576:7C2efPHw24tP1TmKGqYT1cvigpOwdGfXGh2L73fMOpJC:7ifPqEDgpOwpOpJ

    Score
    7/10
    adwarepersistencestealer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks