d880ba0a35ac902af014833fed93fdc9e0c787b8d4822e8de55eb9c21f0a3671 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3423a8c5d1a71a28a87d74df28534157_JaffaCakes118
Size

52KB
Sample

240710-ldcqcs1hmd
MD5

3423a8c5d1a71a28a87d74df28534157
SHA1

bc5abe428446554e9656f0d613ee0f347fb8c7c1
SHA256

d880ba0a35ac902af014833fed93fdc9e0c787b8d4822e8de55eb9c21f0a3671
SHA512

7b9c66a57467877303e64a4aa3b4c948e4b61bfe64fe51a569e1e4d855f766c7f83730e1490671435d2319ebb46280150ff889667b24d359c1ae833c0f19ad18
SSDEEP

768:hSuvpYWkjiaJ7ubXpPi/EtnpEh/27Dpw7ZxRnxt4kNy325piKr3MY8GLy7CzR2U:hSuxJkybXh82nU/27Dpyb1RDuK7vLp9

Score

8^/10

adware stealer

Malware Config

Targets

- Target
  
  3423a8c5d1a71a28a87d74df28534157_JaffaCakes118
- Size
  
  52KB
- MD5
  
  3423a8c5d1a71a28a87d74df28534157
- SHA1
  
  bc5abe428446554e9656f0d613ee0f347fb8c7c1
- SHA256
  
  d880ba0a35ac902af014833fed93fdc9e0c787b8d4822e8de55eb9c21f0a3671
- SHA512
  
  7b9c66a57467877303e64a4aa3b4c948e4b61bfe64fe51a569e1e4d855f766c7f83730e1490671435d2319ebb46280150ff889667b24d359c1ae833c0f19ad18
- SSDEEP
  
  768:hSuvpYWkjiaJ7ubXpPi/EtnpEh/27Dpw7ZxRnxt4kNy325piKr3MY8GLy7CzR2U:hSuxJkybXh82nU/27Dpyb1RDuK7vLp9
Score

8^/10

adware stealer
- Blocklisted process makes network request
- Installs/modifies Browser Helper Object
  BHOs are DLL modules which act as plugins for Internet Explorer.
  stealer adware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Browser Extensions

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2