a18f9e10a0d81fd5b896624b7eec420b2c84fec8b0f46b7c2a87abef28c0633a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8b3359a31030918636ace57230b7e36d_JaffaCakes118
Size

94KB
Sample

240811-vh1sesyckn
MD5

8b3359a31030918636ace57230b7e36d
SHA1

445e213de7849b0a9aa92889acbd9fb201cadef8
SHA256

a18f9e10a0d81fd5b896624b7eec420b2c84fec8b0f46b7c2a87abef28c0633a
SHA512

49ef3098b2ae7b3899bc78682aadb49e6d4c73ccdbd21ff7c1cbe16e2a4a44d73fdb50b6f1622fbca40d557c16f3cd2a89b4a8301498d6352f1897920189500a
SSDEEP

384:I8PyZNjtU2mEcXlhjjz93NNiWNdPBIMiL3DJWd3jZhv9ZfIIlzMsq5k8/s45:fyZIXbnNiYdPBgfJejZZ9Zf1q5k2s

Score

6^/10

adware discovery stealer

Malware Config

Targets

- Target
  
  8b3359a31030918636ace57230b7e36d_JaffaCakes118
- Size
  
  94KB
- MD5
  
  8b3359a31030918636ace57230b7e36d
- SHA1
  
  445e213de7849b0a9aa92889acbd9fb201cadef8
- SHA256
  
  a18f9e10a0d81fd5b896624b7eec420b2c84fec8b0f46b7c2a87abef28c0633a
- SHA512
  
  49ef3098b2ae7b3899bc78682aadb49e6d4c73ccdbd21ff7c1cbe16e2a4a44d73fdb50b6f1622fbca40d557c16f3cd2a89b4a8301498d6352f1897920189500a
- SSDEEP
  
  384:I8PyZNjtU2mEcXlhjjz93NNiWNdPBIMiL3DJWd3jZhv9ZfIIlzMsq5k8/s45:fyZIXbnNiYdPBgfJejZZ9Zf1q5k2s
Score

6^/10

discovery adware stealer
- Installs/modifies Browser Helper Object
  BHOs are DLL modules which act as plugins for Internet Explorer.
  stealer adware
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Browser Extensions

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

adwarediscoverystealer