06a2c295a3b3c1c7c72e6ad3b3b1f040a3dc5edf43031caaa2eee35f9edf9358 | Triage

Submit
Reports

Overview

overview

7

Static

static

7

68c66a99db...18.exe

windows7-x64

7

68c66a99db...18.exe

windows10-2004-x64

7

Sharing

General

Target

68c66a99db1e44c5aab1d4ac940cc3fa_JaffaCakes118
Size

561KB
Sample

240723-y3emgawepm
MD5

68c66a99db1e44c5aab1d4ac940cc3fa
SHA1

c3a3b367eaa55c520734105335dc7622c878d62c
SHA256

06a2c295a3b3c1c7c72e6ad3b3b1f040a3dc5edf43031caaa2eee35f9edf9358
SHA512

afe62e9622030a1aa30333a7c460ba0654306889605f7540c37964bfb0b3f7d3d754f632d02fd32e8c696cc9669ce2220befd3d360872f9409f71267d8fafd7d
SSDEEP

12288:63LtZ+cURBBRrTs1Y/uewZnKGiHY+mR9+rlj8e3kmMarv+EVQzxNsc5X:KtZ+cUfBRcYiFKbHYx3G8e3tMarzQr

Score

7^/10

adware aspackv2 discovery stealer

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

68c66a99db1e44c5aab1d4ac940cc3fa_JaffaCakes118.exe

Resource

win7-20240705-en

adware aspackv2 discovery stealer

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

68c66a99db1e44c5aab1d4ac940cc3fa_JaffaCakes118.exe

Resource

win10v2004-20240709-en

adware aspackv2 discovery stealer

windows10-2004-x64

11 signatures

150 seconds

Malware Config

Targets

- Target
  
  68c66a99db1e44c5aab1d4ac940cc3fa_JaffaCakes118
- Size
  
  561KB
- MD5
  
  68c66a99db1e44c5aab1d4ac940cc3fa
- SHA1
  
  c3a3b367eaa55c520734105335dc7622c878d62c
- SHA256
  
  06a2c295a3b3c1c7c72e6ad3b3b1f040a3dc5edf43031caaa2eee35f9edf9358
- SHA512
  
  afe62e9622030a1aa30333a7c460ba0654306889605f7540c37964bfb0b3f7d3d754f632d02fd32e8c696cc9669ce2220befd3d360872f9409f71267d8fafd7d
- SSDEEP
  
  12288:63LtZ+cURBBRrTs1Y/uewZnKGiHY+mR9+rlj8e3kmMarv+EVQzxNsc5X:KtZ+cUfBRcYiFKbHYx3G8e3tMarzQr
Score

7^/10

adware aspackv2 discovery stealer
- ASPack v2.12-2.42
  Detects executables packed with ASPack v2.12-2.42
  aspackv2
- Deletes itself
- Loads dropped DLL
- Installs/modifies Browser Helper Object
  BHOs are DLL modules which act as plugins for Internet Explorer.
  stealer adware
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Browser Extensions

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

adwareaspackv2discoverystealer

behavioral2

adwareaspackv2discoverystealer

© 2018-2024

Terms | Privacy