77e3feba9bd2623636243261c2fb59f4efdbf47d974ade957be245566740a71c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

89b912d3780252236502c83f21e875a7_JaffaCakes118
Size

523KB
Sample

240811-km58lawgnc
MD5

89b912d3780252236502c83f21e875a7
SHA1

a6ead43e7dd740d4c71440de65e6a088d8aa5954
SHA256

77e3feba9bd2623636243261c2fb59f4efdbf47d974ade957be245566740a71c
SHA512

f10ea1dde2726916174bcfd2eeaf22289d6cd3b4cd97e86a2e7d3d5afcaa649b543aa7ed88854b7f8556eee933b57a5ea0848828d0667431f090e80f2339a2a4
SSDEEP

384:rPyZNjtU2m9B+p1QWfll9/ZWXVmdjHPccVGbtEnotRz4qdsbjt:zyZyEf39zcWgEnoL4qyP

Score

6^/10

adware discovery stealer

Malware Config

Targets

- Target
  
  89b912d3780252236502c83f21e875a7_JaffaCakes118
- Size
  
  523KB
- MD5
  
  89b912d3780252236502c83f21e875a7
- SHA1
  
  a6ead43e7dd740d4c71440de65e6a088d8aa5954
- SHA256
  
  77e3feba9bd2623636243261c2fb59f4efdbf47d974ade957be245566740a71c
- SHA512
  
  f10ea1dde2726916174bcfd2eeaf22289d6cd3b4cd97e86a2e7d3d5afcaa649b543aa7ed88854b7f8556eee933b57a5ea0848828d0667431f090e80f2339a2a4
- SSDEEP
  
  384:rPyZNjtU2m9B+p1QWfll9/ZWXVmdjHPccVGbtEnotRz4qdsbjt:zyZyEf39zcWgEnoL4qyP
Score

6^/10

discovery adware stealer
- Installs/modifies Browser Helper Object
  BHOs are DLL modules which act as plugins for Internet Explorer.
  stealer adware
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Browser Extensions

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

adwarediscoverystealer