Overview

overview

7

Static

static

3

3993be9f18...18.exe

windows7-x64

7

3993be9f18...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    3993be9f187d9e1d179c5d9b5dbe8c2c_JaffaCakes118

  • Size

    526KB

  • Sample

    240711-r8fndstdjd

  • MD5

    3993be9f187d9e1d179c5d9b5dbe8c2c

  • SHA1

    3c03ea51c1ce4369b26db4c86074130d5b600fc7

  • SHA256

    2310c4f0694a2b28d573d35783669b99280349dceed6321a42a17333c6daef4a

  • SHA512

    74b5edfa573693dd3d3735d935a7fd57fafba986025249ddb043fa9a5b995f3d2ac71915cc9842643d4ff2459c5d734d41549586f5ce8d88ec9d616a11440a8d

  • SSDEEP

    12288:zXCNi9BgXKHPBvt7v3q9PqbTw1zoqp3+KBmf4FMW:2WgXKHdN69PGwam3+TfyH

Score
7/10
persistencespywarestealer

Malware Config

Targets

    • Target

      3993be9f187d9e1d179c5d9b5dbe8c2c_JaffaCakes118

    • Size

      526KB

    • MD5

      3993be9f187d9e1d179c5d9b5dbe8c2c

    • SHA1

      3c03ea51c1ce4369b26db4c86074130d5b600fc7

    • SHA256

      2310c4f0694a2b28d573d35783669b99280349dceed6321a42a17333c6daef4a

    • SHA512

      74b5edfa573693dd3d3735d935a7fd57fafba986025249ddb043fa9a5b995f3d2ac71915cc9842643d4ff2459c5d734d41549586f5ce8d88ec9d616a11440a8d

    • SSDEEP

      12288:zXCNi9BgXKHPBvt7v3q9PqbTw1zoqp3+KBmf4FMW:2WgXKHdN69PGwam3+TfyH

    Score
    7/10
    persistencespywarestealer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks