Overview

overview

8

Static

static

3

83472ec153...18.dll

windows7-x64

8

83472ec153...18.dll

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    83472ec15355dc8e07010f4848095091_JaffaCakes118

  • Size

    196KB

  • Sample

    240802-gnnhdszbkm

  • MD5

    83472ec15355dc8e07010f4848095091

  • SHA1

    eefc5cd15c88a1f64dfa41d1aacae6747b02eade

  • SHA256

    bad852e23d4b62555244e070b5709aed8498c14650b0eb64329884c78d878fec

  • SHA512

    4b83d71656a8fa9a6899c3a8cb413a0ff1b1af35b42816911eeedb58cd28a8ee71c2aa6faa6d0ddc9e2273e05e230fc89e34b388b980a189d28b3119e5c7c75b

  • SSDEEP

    3072:mKtd6d6Ayv7QlnlpHlx4aS686NLoHsqrvlz8WtxHLW1TyZjdUcYYSv:hv6d6AyqnlpHj4aTXNLgJ4WATyZjdUP

Score
8/10
adwarediscoverypersistencestealer

Malware Config

Targets

    • Target

      83472ec15355dc8e07010f4848095091_JaffaCakes118

    • Size

      196KB

    • MD5

      83472ec15355dc8e07010f4848095091

    • SHA1

      eefc5cd15c88a1f64dfa41d1aacae6747b02eade

    • SHA256

      bad852e23d4b62555244e070b5709aed8498c14650b0eb64329884c78d878fec

    • SHA512

      4b83d71656a8fa9a6899c3a8cb413a0ff1b1af35b42816911eeedb58cd28a8ee71c2aa6faa6d0ddc9e2273e05e230fc89e34b388b980a189d28b3119e5c7c75b

    • SSDEEP

      3072:mKtd6d6Ayv7QlnlpHlx4aS686NLoHsqrvlz8WtxHLW1TyZjdUcYYSv:hv6d6AyqnlpHj4aTXNLgJ4WATyZjdUP

    Score
    8/10
    adwarediscoverypersistencestealer

    • Event Triggered Execution: Image File Execution Options Injection

      persistence

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks