980f36fd05b8d9f817a5a25e018d0e3aa2eddca15bfbc60e38e63d28362794e9 | Triage

Sharing

General

Target

af201f790fd618971e2f2e877f55cf1c_JaffaCakes118
Size

336KB
Sample

240820-n46r8svakk
MD5

af201f790fd618971e2f2e877f55cf1c
SHA1

0893721949475780c36ee5588814b8cdc7ce1116
SHA256

980f36fd05b8d9f817a5a25e018d0e3aa2eddca15bfbc60e38e63d28362794e9
SHA512

4fe47680accce6ae945ed19cf67679bf64998da4e27938410b51d08ded2fcba017281801fd4c7d65b4eaf5f2c0a14f8d2774adc5f7707a6adb6bd007b2dd5ad7
SSDEEP

6144:1Pgb6OLpjtxG+Ht1LSPH3xqK3/17Qdd7xhl6:aOMtxG+HcX73/1Wd74

Score

6^/10

adware discovery stealer

Malware Config

Targets

- Target
  
  af201f790fd618971e2f2e877f55cf1c_JaffaCakes118
- Size
  
  336KB
- MD5
  
  af201f790fd618971e2f2e877f55cf1c
- SHA1
  
  0893721949475780c36ee5588814b8cdc7ce1116
- SHA256
  
  980f36fd05b8d9f817a5a25e018d0e3aa2eddca15bfbc60e38e63d28362794e9
- SHA512
  
  4fe47680accce6ae945ed19cf67679bf64998da4e27938410b51d08ded2fcba017281801fd4c7d65b4eaf5f2c0a14f8d2774adc5f7707a6adb6bd007b2dd5ad7
- SSDEEP
  
  6144:1Pgb6OLpjtxG+Ht1LSPH3xqK3/17Qdd7xhl6:aOMtxG+HcX73/1Wd74
Score

6^/10

adware discovery stealer
- Installs/modifies Browser Helper Object
  BHOs are DLL modules which act as plugins for Internet Explorer.
  stealer adware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Browser Extensions

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

adwarediscoverystealer

behavioral2

adwarediscoverystealer