93f0890508720eeed60afd0b91e582052d7913afd45aff8e8101a3bf47f84d55 | Triage

Sharing

General

Target

4706f23dc7bdcf0a1932ad37895fb0ea_JaffaCakes118
Size

356KB
Sample

240714-w9srkasekq
MD5

4706f23dc7bdcf0a1932ad37895fb0ea
SHA1

6ebeea72c93043b6737e9c7b7067ed80f909e560
SHA256

93f0890508720eeed60afd0b91e582052d7913afd45aff8e8101a3bf47f84d55
SHA512

956d51408fe7699ac5176b2e09f1b2e401605989bc73d4e080a5e9179019d75bded2944d3f6b2df88445aee0fb1342dd381b9db7c7091c66ae3bb9e4c16ffced
SSDEEP

6144:MqLg6yNvK1NHbhI966AGkAjOpoaY7Hwviy5aRwDnKahkLqTk:DyNvKnH1q6xGJOpqbwK1RkeGTk

Score

7^/10

adware aspackv2 persistence stealer

Malware Config

Targets

- Target
  
  4706f23dc7bdcf0a1932ad37895fb0ea_JaffaCakes118
- Size
  
  356KB
- MD5
  
  4706f23dc7bdcf0a1932ad37895fb0ea
- SHA1
  
  6ebeea72c93043b6737e9c7b7067ed80f909e560
- SHA256
  
  93f0890508720eeed60afd0b91e582052d7913afd45aff8e8101a3bf47f84d55
- SHA512
  
  956d51408fe7699ac5176b2e09f1b2e401605989bc73d4e080a5e9179019d75bded2944d3f6b2df88445aee0fb1342dd381b9db7c7091c66ae3bb9e4c16ffced
- SSDEEP
  
  6144:MqLg6yNvK1NHbhI966AGkAjOpoaY7Hwviy5aRwDnKahkLqTk:DyNvKnH1q6xGJOpqbwK1RkeGTk
Score

6^/10

adware persistence stealer
- Adds Run key to start application
  persistence
- Installs/modifies Browser Helper Object
  BHOs are DLL modules which act as plugins for Internet Explorer.
  stealer adware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Browser Extensions

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

adwarepersistencestealer

behavioral2

adwarepersistencestealer