82fbc39e09374d6b485c16002c7dabd9957bf197feab84e69ab12714196084e8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6160746bdef198c43b82a01768d6290e_JaffaCakes118
Size

52KB
Sample

240721-zs72psvaqc
MD5

6160746bdef198c43b82a01768d6290e
SHA1

7c62db43baea9402f919e0d69194ba34dd3f61cb
SHA256

82fbc39e09374d6b485c16002c7dabd9957bf197feab84e69ab12714196084e8
SHA512

6d7a45fb5c52a85acc3af8f47ffb0f44120c9a9def71f362981d722f7f408251fd6e9a67f1ccbd32da5f132972ca520cb360bd0f6d342829a11f980abf9d2b80
SSDEEP

768:rtWTeA8IPYebK4jcIfSUrjJPjhyMy5zZdk4hVHxKrAxQSfy2phr6PRBz:YTrdPYebFjfSSQYiKrAy2y2P6PRBz

Score

8^/10

adware stealer

Malware Config

Targets

- Target
  
  6160746bdef198c43b82a01768d6290e_JaffaCakes118
- Size
  
  52KB
- MD5
  
  6160746bdef198c43b82a01768d6290e
- SHA1
  
  7c62db43baea9402f919e0d69194ba34dd3f61cb
- SHA256
  
  82fbc39e09374d6b485c16002c7dabd9957bf197feab84e69ab12714196084e8
- SHA512
  
  6d7a45fb5c52a85acc3af8f47ffb0f44120c9a9def71f362981d722f7f408251fd6e9a67f1ccbd32da5f132972ca520cb360bd0f6d342829a11f980abf9d2b80
- SSDEEP
  
  768:rtWTeA8IPYebK4jcIfSUrjJPjhyMy5zZdk4hVHxKrAxQSfy2phr6PRBz:YTrdPYebFjfSSQYiKrAy2y2P6PRBz
Score

8^/10

adware stealer
- Blocklisted process makes network request
- Installs/modifies Browser Helper Object
  BHOs are DLL modules which act as plugins for Internet Explorer.
  stealer adware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Browser Extensions

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2