945aca3c520767b1735b523cc8f91fdd2397e42e78e60b89317f2a08f5d22042 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5ffa38e82dc73873e3b0ddad9222cfa5_JaffaCakes118
Size

164KB
Sample

240720-lq1myswfrn
MD5

5ffa38e82dc73873e3b0ddad9222cfa5
SHA1

5b2aaefc0dcc64fdb90f273a204ec20d4d5e0536
SHA256

945aca3c520767b1735b523cc8f91fdd2397e42e78e60b89317f2a08f5d22042
SHA512

cc644f6f6e9ac78de97a8c52f3005b8c38a50279eb432c97fef848384950ec56ea3bc3425acf8ecb744b78630ea91f2a77da46fd196c877b21a6aba6ea6738cd
SSDEEP

3072:T5pTPPYE4iWipDOOdIAdgXJwoJOmojbKQE6eMPR:TfAiWmDOOdIAdcO/Zr

Score

6^/10

adware stealer

Malware Config

Targets

- Target
  
  5ffa38e82dc73873e3b0ddad9222cfa5_JaffaCakes118
- Size
  
  164KB
- MD5
  
  5ffa38e82dc73873e3b0ddad9222cfa5
- SHA1
  
  5b2aaefc0dcc64fdb90f273a204ec20d4d5e0536
- SHA256
  
  945aca3c520767b1735b523cc8f91fdd2397e42e78e60b89317f2a08f5d22042
- SHA512
  
  cc644f6f6e9ac78de97a8c52f3005b8c38a50279eb432c97fef848384950ec56ea3bc3425acf8ecb744b78630ea91f2a77da46fd196c877b21a6aba6ea6738cd
- SSDEEP
  
  3072:T5pTPPYE4iWipDOOdIAdgXJwoJOmojbKQE6eMPR:TfAiWmDOOdIAdcO/Zr
Score

6^/10

adware stealer
- Installs/modifies Browser Helper Object
  BHOs are DLL modules which act as plugins for Internet Explorer.
  stealer adware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Browser Extensions

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2