9a17e30456e9d1652556a43d4328651ef3c3b607d6cb6b84fbf10d548f086d91 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

af74a0a06718e94519bc478fa9b408a2_JaffaCakes118
Size

320KB
Sample

240820-qz44ysydmp
MD5

af74a0a06718e94519bc478fa9b408a2
SHA1

59077acfdb77bd657803e35e8d8f9cc9352ba6e4
SHA256

9a17e30456e9d1652556a43d4328651ef3c3b607d6cb6b84fbf10d548f086d91
SHA512

37b90a1d156d4b818c4fe18135045ecf05b02fcf493a100cffb449b27ca38c2bcb46c733d3c7b68c6456ca8486c8fd391f7e5d33bbd26332b41196f9170cfa04
SSDEEP

6144:OcqOC3gGQ1bIIoPBtTM0CYOS3e8UtOETN2uAhI+Eow:OcC3cbloT40ClS3e3tOG4ulow

Score

6^/10

adware discovery stealer

Malware Config

Targets

- Target
  
  af74a0a06718e94519bc478fa9b408a2_JaffaCakes118
- Size
  
  320KB
- MD5
  
  af74a0a06718e94519bc478fa9b408a2
- SHA1
  
  59077acfdb77bd657803e35e8d8f9cc9352ba6e4
- SHA256
  
  9a17e30456e9d1652556a43d4328651ef3c3b607d6cb6b84fbf10d548f086d91
- SHA512
  
  37b90a1d156d4b818c4fe18135045ecf05b02fcf493a100cffb449b27ca38c2bcb46c733d3c7b68c6456ca8486c8fd391f7e5d33bbd26332b41196f9170cfa04
- SSDEEP
  
  6144:OcqOC3gGQ1bIIoPBtTM0CYOS3e8UtOETN2uAhI+Eow:OcC3cbloT40ClS3e3tOG4ulow
Score

6^/10

adware discovery stealer
- Installs/modifies Browser Helper Object
  BHOs are DLL modules which act as plugins for Internet Explorer.
  stealer adware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Browser Extensions

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

adwarediscoverystealer

behavioral2

adwarediscoverystealer