Overview

overview

10

Static

static

3

5d71a49921...18.exe

windows7-x64

10

5d71a49921...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5d71a49921643623a328afac4a33f9fd_JaffaCakes118

  • Size

    175KB

  • Sample

    240719-ynbl9sxbnk

  • MD5

    5d71a49921643623a328afac4a33f9fd

  • SHA1

    bc5674d318bef0b77ca29070c2b06daddc2aa579

  • SHA256

    1720780ec09b55bffdcba361cb96f99f6d00f5c7014ea919db766eaa06350eda

  • SHA512

    8983c295fe3840162bad2de6aba61e6990acfa46460a0d31c6453f1fecc6dc10c3c7e3ca83ccb4e6abf18144e2d6ce50f38cd59b06c59d6638dd13daee4aab37

  • SSDEEP

    3072:D5iWyjLteKfqKheuUk9PH3e+Si4KSEbfcVBecS7H+fHt5z:DoTg2bhei/SXc4FKHSHTz

Score
10/10
persistencespywarestealerupx

Malware Config

Targets

    • Target

      5d71a49921643623a328afac4a33f9fd_JaffaCakes118

    • Size

      175KB

    • MD5

      5d71a49921643623a328afac4a33f9fd

    • SHA1

      bc5674d318bef0b77ca29070c2b06daddc2aa579

    • SHA256

      1720780ec09b55bffdcba361cb96f99f6d00f5c7014ea919db766eaa06350eda

    • SHA512

      8983c295fe3840162bad2de6aba61e6990acfa46460a0d31c6453f1fecc6dc10c3c7e3ca83ccb4e6abf18144e2d6ce50f38cd59b06c59d6638dd13daee4aab37

    • SSDEEP

      3072:D5iWyjLteKfqKheuUk9PH3e+Si4KSEbfcVBecS7H+fHt5z:DoTg2bhei/SXc4FKHSHTz

    Score
    10/10
    persistencespywarestealerupx

    • Modifies WinLogon for persistence

      persistence

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks