Overview

overview

7

Static

static

7

24c6a25c9f...18.exe

windows7-x64

7

24c6a25c9f...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    24c6a25c9fabd57fa8349b24932bb84d_JaffaCakes118

  • Size

    140KB

  • Sample

    240704-f3t32syekd

  • MD5

    24c6a25c9fabd57fa8349b24932bb84d

  • SHA1

    3ade250ebd925aa8f75bf2ace88ab09e31872fb6

  • SHA256

    0168b08a18aa17a566c3e3eae94fea45d89729698674276bdbcf08faa8de2c7e

  • SHA512

    cc481eea0c5122adccd23e8bcd6e8d01fb3a710337fd16b2fa64294e7d6cb603c418c863999ce9089aeff36bff1f381dc003379c64bbabbe5a1c99b9c370d96b

  • SSDEEP

    3072:/YJnteetwejIIU4bKTkjoprk5SOnEOxACtYFIQMY:/Y9teoFjIubKTkQaSOnEOxKFIV

Score
7/10
spywarestealerupx

Malware Config

Targets

    • Target

      24c6a25c9fabd57fa8349b24932bb84d_JaffaCakes118

    • Size

      140KB

    • MD5

      24c6a25c9fabd57fa8349b24932bb84d

    • SHA1

      3ade250ebd925aa8f75bf2ace88ab09e31872fb6

    • SHA256

      0168b08a18aa17a566c3e3eae94fea45d89729698674276bdbcf08faa8de2c7e

    • SHA512

      cc481eea0c5122adccd23e8bcd6e8d01fb3a710337fd16b2fa64294e7d6cb603c418c863999ce9089aeff36bff1f381dc003379c64bbabbe5a1c99b9c370d96b

    • SSDEEP

      3072:/YJnteetwejIIU4bKTkjoprk5SOnEOxACtYFIQMY:/Y9teoFjIubKTkQaSOnEOxKFIV

    Score
    7/10
    spywarestealerupx

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks