Overview

overview

7

Static

static

3

366695391a...18.exe

windows7-x64

7

366695391a...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    366695391a81f369fbfc02db1b56ba8d_JaffaCakes118

  • Size

    1.3MB

  • Sample

    240710-z2kb1azgjn

  • MD5

    366695391a81f369fbfc02db1b56ba8d

  • SHA1

    622e301f0fe40defa6f61e6da6b72f85268d91ac

  • SHA256

    24b367fbfb01268cd2d04020562ad7d86b381bd67c00661c1b0a608d0bf8f7f5

  • SHA512

    e8a4c3adbb0f998cefde55a78a1fb059285fa557956c22f3ebab0f6945c1cca8e77b6622fac914db258d4c701b2cc9a0e99111951a8095500df8e1effe54b20f

  • SSDEEP

    24576:Q3nZqfbiADv6p7Zr6rt+UADi9fUC00zBfb53Q3pofcCeuHdlQ1lag/EdjFc:QSipFCtWTNG5g5okvuMIG

Score
7/10
spywarestealerupx

Malware Config

Targets

    • Target

      366695391a81f369fbfc02db1b56ba8d_JaffaCakes118

    • Size

      1.3MB

    • MD5

      366695391a81f369fbfc02db1b56ba8d

    • SHA1

      622e301f0fe40defa6f61e6da6b72f85268d91ac

    • SHA256

      24b367fbfb01268cd2d04020562ad7d86b381bd67c00661c1b0a608d0bf8f7f5

    • SHA512

      e8a4c3adbb0f998cefde55a78a1fb059285fa557956c22f3ebab0f6945c1cca8e77b6622fac914db258d4c701b2cc9a0e99111951a8095500df8e1effe54b20f

    • SSDEEP

      24576:Q3nZqfbiADv6p7Zr6rt+UADi9fUC00zBfb53Q3pofcCeuHdlQ1lag/EdjFc:QSipFCtWTNG5g5okvuMIG

    Score
    7/10
    spywarestealerupx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks for any installed AV software in registry

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks