59405ef1dabdd1e2867c39afef04233e235ad930670ccb7e34878f92dfe0b29f | Triage

Sharing

General

Target

29f73ab6ffbf198271e38f48e18d33e1_JaffaCakes118
Size

380KB
Sample

240707-n9wt8a1grl
MD5

29f73ab6ffbf198271e38f48e18d33e1
SHA1

28e790e4822a2efd1ea6152e3755ac5612b54d19
SHA256

59405ef1dabdd1e2867c39afef04233e235ad930670ccb7e34878f92dfe0b29f
SHA512

863c9b082a509eb48eb72681872aafc3d47f47e56a49794ab321098371021dec2471b7b480f31474d5d7851c9dffd1aadc50774b2ca7c1922708eeb24e965bfd
SSDEEP

6144:+ltmzk6QDBB0UB9fx+GCy0YdcgzC4HXWSauwsIWaV1Fqd4L/PF4FqyCf:+ltmzXQY8p0GjmX4HXAund4LnyZ4

Score

7^/10

adware stealer

Malware Config

Targets

- Target
  
  29f73ab6ffbf198271e38f48e18d33e1_JaffaCakes118
- Size
  
  380KB
- MD5
  
  29f73ab6ffbf198271e38f48e18d33e1
- SHA1
  
  28e790e4822a2efd1ea6152e3755ac5612b54d19
- SHA256
  
  59405ef1dabdd1e2867c39afef04233e235ad930670ccb7e34878f92dfe0b29f
- SHA512
  
  863c9b082a509eb48eb72681872aafc3d47f47e56a49794ab321098371021dec2471b7b480f31474d5d7851c9dffd1aadc50774b2ca7c1922708eeb24e965bfd
- SSDEEP
  
  6144:+ltmzk6QDBB0UB9fx+GCy0YdcgzC4HXWSauwsIWaV1Fqd4L/PF4FqyCf:+ltmzXQY8p0GjmX4HXAund4LnyZ4
Score

7^/10

adware stealer
- Loads dropped DLL
- Installs/modifies Browser Helper Object
  BHOs are DLL modules which act as plugins for Internet Explorer.
  stealer adware
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Browser Extensions

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2