13c5e3fc5374fdd922fefc7b76ffee2247b7d5129c008902ccef57ac3a91c2e9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b3c5d4642dee747dac6e82a7b85bdcf3_JaffaCakes118
Size

477KB
Sample

240821-rgexsawcpp
MD5

b3c5d4642dee747dac6e82a7b85bdcf3
SHA1

30ea68bc0257d4e79b5d185964cc0432cf665c64
SHA256

13c5e3fc5374fdd922fefc7b76ffee2247b7d5129c008902ccef57ac3a91c2e9
SHA512

0f874f4154b540aae49627c95b3129c055292b599ef5b10aa8ed0cc8d46fbf52fa5851c0c47b384b99870d504f4b29a84ca70426620f6a7c7709447c21d6b962
SSDEEP

12288:2erVjpvBmIWWq9Tt3l2Nutg/cnmQPVKFgKFbvivN1Fb5ZS/HWwNxaj50qr9SeETa:VrVjpv4IYKD

Score

6^/10

adware discovery stealer

Malware Config

Targets

- Target
  
  b3c5d4642dee747dac6e82a7b85bdcf3_JaffaCakes118
- Size
  
  477KB
- MD5
  
  b3c5d4642dee747dac6e82a7b85bdcf3
- SHA1
  
  30ea68bc0257d4e79b5d185964cc0432cf665c64
- SHA256
  
  13c5e3fc5374fdd922fefc7b76ffee2247b7d5129c008902ccef57ac3a91c2e9
- SHA512
  
  0f874f4154b540aae49627c95b3129c055292b599ef5b10aa8ed0cc8d46fbf52fa5851c0c47b384b99870d504f4b29a84ca70426620f6a7c7709447c21d6b962
- SSDEEP
  
  12288:2erVjpvBmIWWq9Tt3l2Nutg/cnmQPVKFgKFbvivN1Fb5ZS/HWwNxaj50qr9SeETa:VrVjpv4IYKD
Score

6^/10

adware discovery stealer
- Installs/modifies Browser Helper Object
  BHOs are DLL modules which act as plugins for Internet Explorer.
  stealer adware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Browser Extensions

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

adwarediscoverystealer

behavioral2

adwarediscoverystealer