Overview

overview

7

Static

static

7

49c503f64c...18.exe

windows7-x64

7

49c503f64c...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    49c503f64c9aa500c4ba4d85e3e64053_JaffaCakes118

  • Size

    518KB

  • Sample

    240715-plplnstdle

  • MD5

    49c503f64c9aa500c4ba4d85e3e64053

  • SHA1

    01aebb6957db62e7fcc8fdffdfb1277b89e0884e

  • SHA256

    034713b53d1ad6f79a4f3fd3ee46779f8b7d33c1e379b4d984a085ac771b2bea

  • SHA512

    ced79412978366bd2c1464307df1c735ed7f68d02fd64418150619e2e77e8cbae96ed2c09ebda4f961fc2b527802b4478cecf171f3d92bbc6130f49d49218353

  • SSDEEP

    12288:E9BEenr6nCOAAG7ghC3/PxcSq2atFjEBte4YlfuvID2ISWHcxJ:ErnrSRthEpombYQ3W8xJ

Score
7/10
spywarestealerupx

Malware Config

Targets

    • Target

      49c503f64c9aa500c4ba4d85e3e64053_JaffaCakes118

    • Size

      518KB

    • MD5

      49c503f64c9aa500c4ba4d85e3e64053

    • SHA1

      01aebb6957db62e7fcc8fdffdfb1277b89e0884e

    • SHA256

      034713b53d1ad6f79a4f3fd3ee46779f8b7d33c1e379b4d984a085ac771b2bea

    • SHA512

      ced79412978366bd2c1464307df1c735ed7f68d02fd64418150619e2e77e8cbae96ed2c09ebda4f961fc2b527802b4478cecf171f3d92bbc6130f49d49218353

    • SSDEEP

      12288:E9BEenr6nCOAAG7ghC3/PxcSq2atFjEBte4YlfuvID2ISWHcxJ:ErnrSRthEpombYQ3W8xJ

    Score
    7/10
    spywarestealerupx

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks