Overview

overview

7

Static

static

3

b873170db9...18.exe

windows7-x64

7

b873170db9...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b873170db98b45ccf3a6bd52a2d67211_JaffaCakes118

  • Size

    156KB

  • Sample

    240822-vseb6s1ckl

  • MD5

    b873170db98b45ccf3a6bd52a2d67211

  • SHA1

    2ff3de8029bf3bf8ae1d9f7e7f28bfcd4bfc27a2

  • SHA256

    f7eac22bd7cf0e50280d2db5f9ccb869f3942514a3a6b5925cba1f5ff2a203ad

  • SHA512

    a8a9478ec6eef29c199cc4672821525fb257068bcd5bade9e8700094ab0f400dbcf5e88fd63141303b8502ad662668033c704dfe17511c347ebcec4add59e179

  • SSDEEP

    3072:XEfJoshXKOzluoT8gWFMwZK5xTKDJlc1QbTPDPqORNL2q2:XEfJXX1lJog/wZK5dKDJxbXPJyq2

Score
7/10
adwarediscoverystealerupx

Malware Config

Targets

    • Target

      b873170db98b45ccf3a6bd52a2d67211_JaffaCakes118

    • Size

      156KB

    • MD5

      b873170db98b45ccf3a6bd52a2d67211

    • SHA1

      2ff3de8029bf3bf8ae1d9f7e7f28bfcd4bfc27a2

    • SHA256

      f7eac22bd7cf0e50280d2db5f9ccb869f3942514a3a6b5925cba1f5ff2a203ad

    • SHA512

      a8a9478ec6eef29c199cc4672821525fb257068bcd5bade9e8700094ab0f400dbcf5e88fd63141303b8502ad662668033c704dfe17511c347ebcec4add59e179

    • SSDEEP

      3072:XEfJoshXKOzluoT8gWFMwZK5xTKDJlc1QbTPDPqORNL2q2:XEfJXX1lJog/wZK5dKDJxbXPJyq2

    Score
    7/10
    adwarediscoverystealerupx

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks