Overview

overview

8

Static

static

3

b560bfc4b9...18.exe

windows7-x64

8

b560bfc4b9...18.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    b560bfc4b90b8746af76df077479b675_JaffaCakes118

  • Size

    86KB

  • Sample

    240821-2wc2vayerl

  • MD5

    b560bfc4b90b8746af76df077479b675

  • SHA1

    6799f881a68117298303baf95c9cbbeded42a297

  • SHA256

    b24e80c7721576693dd9d51573169b3f21c6fbac52d6f5817bddc6980cbf1a21

  • SHA512

    4991565b82e8d4a93b32b9e65a1c85f7c9948e2cc55d92888e7a98559d65047f6a4c06b412a30bc5b1163dd3929e7b397874754cc3cae37326ef2a84ee1a3df7

  • SSDEEP

    1536:Pnw48pjKt8v25opYry7CF+UnOxgT6dsfm1EXSaP3EPkpo5Iw3BUqedDs74qXP:Pw48qEPtucyqedUZXP

Score
8/10
evasionpersistencespywarestealer

Malware Config

Targets

    • Target

      b560bfc4b90b8746af76df077479b675_JaffaCakes118

    • Size

      86KB

    • MD5

      b560bfc4b90b8746af76df077479b675

    • SHA1

      6799f881a68117298303baf95c9cbbeded42a297

    • SHA256

      b24e80c7721576693dd9d51573169b3f21c6fbac52d6f5817bddc6980cbf1a21

    • SHA512

      4991565b82e8d4a93b32b9e65a1c85f7c9948e2cc55d92888e7a98559d65047f6a4c06b412a30bc5b1163dd3929e7b397874754cc3cae37326ef2a84ee1a3df7

    • SSDEEP

      1536:Pnw48pjKt8v25opYry7CF+UnOxgT6dsfm1EXSaP3EPkpo5Iw3BUqedDs74qXP:Pw48qEPtucyqedUZXP

    Score
    8/10
    evasionpersistencespywarestealer

    • Disables RegEdit via registry modification

      evasion

    • Drops file in Drivers directory

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks