Overview

overview

7

Static

static

3

5ab5db8b92...18.exe

windows7-x64

7

5ab5db8b92...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    5ab5db8b92af0944c9217da47ec61414_JaffaCakes118

  • Size

    313KB

  • Sample

    240719-gkv33avhmk

  • MD5

    5ab5db8b92af0944c9217da47ec61414

  • SHA1

    0fe79bedb561f464a62901826ab7e1f976943f98

  • SHA256

    b932fd3ec66390707ac097a3510f1ea82a3445e7ab7d2ea5c5e1ba79e29cb798

  • SHA512

    03114ace9a2c412b5a59d8b2a51828954b2a41665572c19b083bfe6687d27fab1ccb83f0c2a15b15eb7b975da3bf2ff590e11b2a6a6e142d28ab6edb26f51319

  • SSDEEP

    6144:91OgDPdkBAFZWjadD4shzAkNuuLtzojgFL3+eCBgf7be9SR9i5:91OgLda7ELzlFieCBgfOSW

Score
7/10
adwarediscoveryspywarestealer

Malware Config

Targets

    • Target

      5ab5db8b92af0944c9217da47ec61414_JaffaCakes118

    • Size

      313KB

    • MD5

      5ab5db8b92af0944c9217da47ec61414

    • SHA1

      0fe79bedb561f464a62901826ab7e1f976943f98

    • SHA256

      b932fd3ec66390707ac097a3510f1ea82a3445e7ab7d2ea5c5e1ba79e29cb798

    • SHA512

      03114ace9a2c412b5a59d8b2a51828954b2a41665572c19b083bfe6687d27fab1ccb83f0c2a15b15eb7b975da3bf2ff590e11b2a6a6e142d28ab6edb26f51319

    • SSDEEP

      6144:91OgDPdkBAFZWjadD4shzAkNuuLtzojgFL3+eCBgf7be9SR9i5:91OgLda7ELzlFieCBgfOSW

    Score
    7/10
    adwarediscoveryspywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks