Overview

overview

7

Static

static

3

a9f5a45841...18.exe

windows7-x64

7

a9f5a45841...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a9f5a45841abe45be2fc6fd8f9cd028f_JaffaCakes118

  • Size

    168KB

  • Sample

    240819-hbdcbssdpn

  • MD5

    a9f5a45841abe45be2fc6fd8f9cd028f

  • SHA1

    ab90c743ca90b6bd4c0817977ed492af46c74091

  • SHA256

    52707293ef54fd249e7ee7354e93635ad48e4ce607616076bce73cdff475e959

  • SHA512

    a9108d1ef712efa5b2171a008775a1fd62aa4c7b0ab191636602f7e247ea7c1ce2cbc7276675cfb8bca79cfa69ab7c8acd6fb226afc682d1508a5387b548abd6

  • SSDEEP

    3072:k02RCXtj4OB2EEkxjtiLz00T1pOYvcEr4SF6Evm3b2syXxAP:n2QdR2qxjtiX00hcE5xvUHyhK

Score
7/10
discoverypersistencespywarestealerupx

Malware Config

Targets

    • Target

      a9f5a45841abe45be2fc6fd8f9cd028f_JaffaCakes118

    • Size

      168KB

    • MD5

      a9f5a45841abe45be2fc6fd8f9cd028f

    • SHA1

      ab90c743ca90b6bd4c0817977ed492af46c74091

    • SHA256

      52707293ef54fd249e7ee7354e93635ad48e4ce607616076bce73cdff475e959

    • SHA512

      a9108d1ef712efa5b2171a008775a1fd62aa4c7b0ab191636602f7e247ea7c1ce2cbc7276675cfb8bca79cfa69ab7c8acd6fb226afc682d1508a5387b548abd6

    • SSDEEP

      3072:k02RCXtj4OB2EEkxjtiLz00T1pOYvcEr4SF6Evm3b2syXxAP:n2QdR2qxjtiX00hcE5xvUHyhK

    Score
    7/10
    discoverypersistencespywarestealerupx

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks