Overview

overview

7

Static

static

7

ab002967c1...18.exe

windows7-x64

7

ab002967c1...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ab002967c1a93920a04da73c07a58e15_JaffaCakes118

  • Size

    141KB

  • Sample

    240819-pjg4taxbnj

  • MD5

    ab002967c1a93920a04da73c07a58e15

  • SHA1

    fe8fe4d41ccc6c26f4c03182db2baec429837661

  • SHA256

    ae67c6c848df69c041ad4afd63da026e25c3fac04a5820701d95530acce5b509

  • SHA512

    6b6bceec9c8f42ccda72a3cd68c2387092a60c52813b200a9be5eed9ca4b28a6586649ca1238bea01b39b963529ed8246a26532790398f6b1b7fb228717842f5

  • SSDEEP

    3072:SKcWmjRrz3ZKcWmjRrz35Z1PxoBDFt4a4d4WFF6IQpPSPeivZ6eqhnrZ1:hGyG5Z1aBpia4OWT6pPWeivEZ1

Score
7/10
discoverypersistencespywarestealerupx

Malware Config

Targets

    • Target

      ab002967c1a93920a04da73c07a58e15_JaffaCakes118

    • Size

      141KB

    • MD5

      ab002967c1a93920a04da73c07a58e15

    • SHA1

      fe8fe4d41ccc6c26f4c03182db2baec429837661

    • SHA256

      ae67c6c848df69c041ad4afd63da026e25c3fac04a5820701d95530acce5b509

    • SHA512

      6b6bceec9c8f42ccda72a3cd68c2387092a60c52813b200a9be5eed9ca4b28a6586649ca1238bea01b39b963529ed8246a26532790398f6b1b7fb228717842f5

    • SSDEEP

      3072:SKcWmjRrz3ZKcWmjRrz35Z1PxoBDFt4a4d4WFF6IQpPSPeivZ6eqhnrZ1:hGyG5Z1aBpia4OWT6pPWeivEZ1

    Score
    7/10
    discoverypersistencespywarestealerupx

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks