Overview

overview

7

Static

static

3

8c70b8d050...18.exe

windows7-x64

7

8c70b8d050...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    8c70b8d05096f429ff0e08c65e3054d0_JaffaCakes118

  • Size

    164KB

  • Sample

    240811-3lphkavbmp

  • MD5

    8c70b8d05096f429ff0e08c65e3054d0

  • SHA1

    93349363a101bb2eac87f70aa8f083badbfc60b5

  • SHA256

    48b0eb7494c93ae0a62eca8761334af1d8a1c7e22b3da85536d53a3ec6c40f43

  • SHA512

    dd1787523d95f51a284b8778fa0240cf473b501fb433592617d8e41326b2dc70d399f3d3590994dff21acc4b8b1b9a21127dd6557bdaae603d808c4a7db5d65a

  • SSDEEP

    3072:JtOBwK0TlLm8lirVlOJARb1X28BVmXIVWTjj3vfo69c:J8BO61ZlnzuXIVyHI6+

Score
7/10
discoverypersistencespywarestealerupx

Malware Config

Targets

    • Target

      8c70b8d05096f429ff0e08c65e3054d0_JaffaCakes118

    • Size

      164KB

    • MD5

      8c70b8d05096f429ff0e08c65e3054d0

    • SHA1

      93349363a101bb2eac87f70aa8f083badbfc60b5

    • SHA256

      48b0eb7494c93ae0a62eca8761334af1d8a1c7e22b3da85536d53a3ec6c40f43

    • SHA512

      dd1787523d95f51a284b8778fa0240cf473b501fb433592617d8e41326b2dc70d399f3d3590994dff21acc4b8b1b9a21127dd6557bdaae603d808c4a7db5d65a

    • SSDEEP

      3072:JtOBwK0TlLm8lirVlOJARb1X28BVmXIVWTjj3vfo69c:J8BO61ZlnzuXIVyHI6+

    Score
    7/10
    discoverypersistencespywarestealerupx

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks