1f587ae3880df4395158694e6bd1f1655f9ccaa6f3809fbb316cca4c717781eb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4226157b36141bdd4fe46af52ba87d63_JaffaCakes118
Size

72KB
Sample

240713-r9gl3sxdlb
MD5

4226157b36141bdd4fe46af52ba87d63
SHA1

b84e11820ea576dc2f8162097ff45792692da93e
SHA256

1f587ae3880df4395158694e6bd1f1655f9ccaa6f3809fbb316cca4c717781eb
SHA512

368ab3c5be002f6d25adc682ee8d410995a0a88879111da7357985a4b2c27a7b16058b429f9674a3fcc382154acf7bda41af7d18ef656b38d063a0c259f89a70
SSDEEP

1536:o5YvbQqAXcuSJv5RK2DowuGzT7hGU+yVFgOHAKXF8/:MILAMZvTv+GLUUHVFXgKXF

Score

7^/10

adware stealer

Malware Config

Targets

- Target
  
  4226157b36141bdd4fe46af52ba87d63_JaffaCakes118
- Size
  
  72KB
- MD5
  
  4226157b36141bdd4fe46af52ba87d63
- SHA1
  
  b84e11820ea576dc2f8162097ff45792692da93e
- SHA256
  
  1f587ae3880df4395158694e6bd1f1655f9ccaa6f3809fbb316cca4c717781eb
- SHA512
  
  368ab3c5be002f6d25adc682ee8d410995a0a88879111da7357985a4b2c27a7b16058b429f9674a3fcc382154acf7bda41af7d18ef656b38d063a0c259f89a70
- SSDEEP
  
  1536:o5YvbQqAXcuSJv5RK2DowuGzT7hGU+yVFgOHAKXF8/:MILAMZvTv+GLUUHVFXgKXF
Score

7^/10

adware stealer
- Loads dropped DLL
- Installs/modifies Browser Helper Object
  BHOs are DLL modules which act as plugins for Internet Explorer.
  stealer adware
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Browser Extensions

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2