Overview

overview

7

Static

static

3

688051f1af...18.exe

windows7-x64

7

688051f1af...18.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    688051f1af6a88e9cf8b371d62e9baa8_JaffaCakes118

  • Size

    172KB

  • Sample

    240723-vwcbzs1blr

  • MD5

    688051f1af6a88e9cf8b371d62e9baa8

  • SHA1

    213c61d9e9a6f8e270a0db4b66f996cfe570bb4a

  • SHA256

    e6055d33b683f98ce3a40be5fe1465a2e225d107e8347bc94614fee10f8db208

  • SHA512

    6f6c21b98d80af6c0e7e741b2beb7cf7fd5715336c61d8eecf6254e62a035ef3326b3a62febc1b88969c78cdc39b312db8e645719af64b87a53f2cde743febd8

  • SSDEEP

    3072:VCF6f1P8S92LGWuko2kr+1GA20i2tU/z6qJP2Pqb6ot5PLLtK9jpduIvR:VCF6+tCJkop+0A/kBPiq5t5PLRK97bR

Score
7/10
discoverypersistencespywarestealerupx

Malware Config

Targets

    • Target

      688051f1af6a88e9cf8b371d62e9baa8_JaffaCakes118

    • Size

      172KB

    • MD5

      688051f1af6a88e9cf8b371d62e9baa8

    • SHA1

      213c61d9e9a6f8e270a0db4b66f996cfe570bb4a

    • SHA256

      e6055d33b683f98ce3a40be5fe1465a2e225d107e8347bc94614fee10f8db208

    • SHA512

      6f6c21b98d80af6c0e7e741b2beb7cf7fd5715336c61d8eecf6254e62a035ef3326b3a62febc1b88969c78cdc39b312db8e645719af64b87a53f2cde743febd8

    • SSDEEP

      3072:VCF6f1P8S92LGWuko2kr+1GA20i2tU/z6qJP2Pqb6ot5PLLtK9jpduIvR:VCF6+tCJkop+0A/kBPiq5t5PLRK97bR

    Score
    7/10
    discoverypersistencespywarestealerupx

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks