Overview

overview

7

Static

static

3

5ba760e6bc...18.exe

windows7-x64

7

5ba760e6bc...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5ba760e6bc29844ab61a5576571b5508_JaffaCakes118

  • Size

    1.2MB

  • Sample

    240719-m342ksxerl

  • MD5

    5ba760e6bc29844ab61a5576571b5508

  • SHA1

    015c16de5a9cd3277b6fb9aa5a85dde118473704

  • SHA256

    07e2b5e3d5fdb9bbcf9898424c885104d63dcb12454cd2903f8fcf53bd22b6a8

  • SHA512

    31c0c139b0ef0f2ce280e7342158580cbceb03a3d900db977c885803841a1d398536a42cb4781786cb89acd0b19cb3e5a2f050385f51f1d6a6c04e411c2c51ce

  • SSDEEP

    24576:g3UiPkeZwHM47FDdyhz0Te89Gq/ddIb2GIwNmtj:2UicV7imTeWzTJXN

Score
7/10
adwarestealer

Malware Config

Targets

    • Target

      5ba760e6bc29844ab61a5576571b5508_JaffaCakes118

    • Size

      1.2MB

    • MD5

      5ba760e6bc29844ab61a5576571b5508

    • SHA1

      015c16de5a9cd3277b6fb9aa5a85dde118473704

    • SHA256

      07e2b5e3d5fdb9bbcf9898424c885104d63dcb12454cd2903f8fcf53bd22b6a8

    • SHA512

      31c0c139b0ef0f2ce280e7342158580cbceb03a3d900db977c885803841a1d398536a42cb4781786cb89acd0b19cb3e5a2f050385f51f1d6a6c04e411c2c51ce

    • SSDEEP

      24576:g3UiPkeZwHM47FDdyhz0Te89Gq/ddIb2GIwNmtj:2UicV7imTeWzTJXN

    Score
    7/10
    adwarestealer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks