4501c4f93e2c23e89eb7775321b58d25313bec343713d09ab432111f95a9b78a | Triage

Submit
Reports

Overview

overview

7

Static

static

3

81c1916faa...18.exe

windows7-x64

7

81c1916faa...18.exe

windows10-2004-x64

7

Sharing

General

Target

81c1916faaf4854ca8b533468c48c811_JaffaCakes118
Size

222KB
Sample

240801-zjlr4swdnm
MD5

81c1916faaf4854ca8b533468c48c811
SHA1

655ffb2eb26dfcf2db8e765c3ad68c0353f75a8b
SHA256

4501c4f93e2c23e89eb7775321b58d25313bec343713d09ab432111f95a9b78a
SHA512

2c413c511c6e7de54673bbd9776bc8eb3625ee9592579232238f754a3244fd52ea155a62eff3851e12d43b52b510b9b3026a1b2c1cdd873c1e54bb8ade62e31c
SSDEEP

6144:Ku3dwQ0I23Pvq8AS10fsiGodZTfq/kX1XtHNdBbqcVO:DNQqnS1GsiGod1fNhtHNuL

Score

7^/10

adware discovery stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

81c1916faaf4854ca8b533468c48c811_JaffaCakes118.exe

Resource

win7-20240729-en

adware discovery stealer

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

81c1916faaf4854ca8b533468c48c811_JaffaCakes118.exe

Resource

win10v2004-20240730-en

adware discovery stealer

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  81c1916faaf4854ca8b533468c48c811_JaffaCakes118
- Size
  
  222KB
- MD5
  
  81c1916faaf4854ca8b533468c48c811
- SHA1
  
  655ffb2eb26dfcf2db8e765c3ad68c0353f75a8b
- SHA256
  
  4501c4f93e2c23e89eb7775321b58d25313bec343713d09ab432111f95a9b78a
- SHA512
  
  2c413c511c6e7de54673bbd9776bc8eb3625ee9592579232238f754a3244fd52ea155a62eff3851e12d43b52b510b9b3026a1b2c1cdd873c1e54bb8ade62e31c
- SSDEEP
  
  6144:Ku3dwQ0I23Pvq8AS10fsiGodZTfq/kX1XtHNdBbqcVO:DNQqnS1GsiGod1fNhtHNuL
Score

7^/10

adware discovery stealer
- Loads dropped DLL
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Installs/modifies Browser Helper Object
  BHOs are DLL modules which act as plugins for Internet Explorer.
  stealer adware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Browser Extensions

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

adwarediscoverystealer

behavioral2

adwarediscoverystealer

© 2018-2024

Terms | Privacy