Overview

overview

7

Static

static

3

a8591f4f65...18.exe

windows7-x64

7

a8591f4f65...18.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a8591f4f65afdc0c0e299b1419c51830_JaffaCakes118

  • Size

    167KB

  • Sample

    240818-1n96yawfkd

  • MD5

    a8591f4f65afdc0c0e299b1419c51830

  • SHA1

    030986f56004aa5156cbee16aee28499e89a0568

  • SHA256

    c5600896319471796b7092083a134eb8b655e0f55c15b830cb0fd513d66b09fb

  • SHA512

    f66dad12af0752d53b4d3c4d391e23e71b95ef7384fd9bdd969c24a79b074cac0ae355f0ee349108ac0c1574507349c059fdf8f142bebb9feebef15dfd3273fa

  • SSDEEP

    3072:PxjRRHINChSLLQKKcq4BjctRtthHbaL0i4PPN8H8aJFYnz:P/RoASHKuVchbaLj4P1mFYz

Score
7/10
discoverypersistencespywarestealerupx

Malware Config

Targets

    • Target

      a8591f4f65afdc0c0e299b1419c51830_JaffaCakes118

    • Size

      167KB

    • MD5

      a8591f4f65afdc0c0e299b1419c51830

    • SHA1

      030986f56004aa5156cbee16aee28499e89a0568

    • SHA256

      c5600896319471796b7092083a134eb8b655e0f55c15b830cb0fd513d66b09fb

    • SHA512

      f66dad12af0752d53b4d3c4d391e23e71b95ef7384fd9bdd969c24a79b074cac0ae355f0ee349108ac0c1574507349c059fdf8f142bebb9feebef15dfd3273fa

    • SSDEEP

      3072:PxjRRHINChSLLQKKcq4BjctRtthHbaL0i4PPN8H8aJFYnz:P/RoASHKuVchbaLj4P1mFYz

    Score
    7/10
    discoverypersistencespywarestealerupx

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks