3cbf48bc8ca52fdc62657ea20d5b58a19be0b40b9fdd25771bd5c9ae965c47e8 | Triage

Sharing

General

Target

c81dc424040ee242ed73e2f30f2ee304_JaffaCakes118
Size

175KB
Sample

240829-dhcxxssdll
MD5

c81dc424040ee242ed73e2f30f2ee304
SHA1

831ca78f8bc51d89ef1be50ad393aecb5198cc8c
SHA256

3cbf48bc8ca52fdc62657ea20d5b58a19be0b40b9fdd25771bd5c9ae965c47e8
SHA512

c1f2bf2c538a8be087e2cf116be78c37fcca5f424eb47bc0ae204a953390b5348964794ffc7051f899e32117bf524d28e8d3b2dd41a43ec9105f0c7726be5d6e
SSDEEP

3072:cwiZdYS7uqTaH2ntf59Y5Q5RFWSbbrMbvT0q8O1cZPzQ7IXMBc+AMP+QfQEhxFyy:cwiZpuyjdzLdwvP6bQ7yMP+DE827FbP

Score

7^/10

adware aspackv2 bootkit discovery persistence stealer

Malware Config

Targets

- Target
  
  c81dc424040ee242ed73e2f30f2ee304_JaffaCakes118
- Size
  
  175KB
- MD5
  
  c81dc424040ee242ed73e2f30f2ee304
- SHA1
  
  831ca78f8bc51d89ef1be50ad393aecb5198cc8c
- SHA256
  
  3cbf48bc8ca52fdc62657ea20d5b58a19be0b40b9fdd25771bd5c9ae965c47e8
- SHA512
  
  c1f2bf2c538a8be087e2cf116be78c37fcca5f424eb47bc0ae204a953390b5348964794ffc7051f899e32117bf524d28e8d3b2dd41a43ec9105f0c7726be5d6e
- SSDEEP
  
  3072:cwiZdYS7uqTaH2ntf59Y5Q5RFWSbbrMbvT0q8O1cZPzQ7IXMBc+AMP+QfQEhxFyy:cwiZpuyjdzLdwvP6bQ7yMP+DE827FbP
Score

6^/10

adware bootkit discovery persistence stealer
- Installs/modifies Browser Helper Object
  BHOs are DLL modules which act as plugins for Internet Explorer.
  stealer adware
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Browser Extensions

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Modify Registry

Pre-OS Boot

Bootkit

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

adwarebootkitdiscoverypersistencestealer

behavioral2

adwarediscoverystealer