Overview

overview

7

Static

static

3

b2750792b0...18.exe

windows7-x64

7

b2750792b0...18.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    b2750792b0dec263622b7a106898307f_JaffaCakes118

  • Size

    126KB

  • Sample

    240821-hg35yayamn

  • MD5

    b2750792b0dec263622b7a106898307f

  • SHA1

    5b31634da11abc0c8510ca8a37cd600a126be6cd

  • SHA256

    981687bd87e36d836990ca1367069c8c333886b4d49b7d68ce15a5d1362f96bf

  • SHA512

    9287c253df449e27623ce72acf5053906ce091c3b9eedb7875da6c6a25b8ca842918aaf98d94cfcacb956a181f5d6523e4ddd7f0809299576cb93d32db3ad6ee

  • SSDEEP

    3072:0zfPOZE3rtF84oh03XPSVVKWLjOhReWrcJdc75u7k:0zfPn7tbosXPSVVKWmTe0Qdcl

Score
7/10
discoverypersistencespywarestealerupx

Malware Config

Targets

    • Target

      b2750792b0dec263622b7a106898307f_JaffaCakes118

    • Size

      126KB

    • MD5

      b2750792b0dec263622b7a106898307f

    • SHA1

      5b31634da11abc0c8510ca8a37cd600a126be6cd

    • SHA256

      981687bd87e36d836990ca1367069c8c333886b4d49b7d68ce15a5d1362f96bf

    • SHA512

      9287c253df449e27623ce72acf5053906ce091c3b9eedb7875da6c6a25b8ca842918aaf98d94cfcacb956a181f5d6523e4ddd7f0809299576cb93d32db3ad6ee

    • SSDEEP

      3072:0zfPOZE3rtF84oh03XPSVVKWLjOhReWrcJdc75u7k:0zfPn7tbosXPSVVKWmTe0Qdcl

    Score
    7/10
    discoverypersistencespywarestealerupx

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks