Overview

overview

7

Static

static

3

d1d3c2beed...18.exe

windows7-x64

7

d1d3c2beed...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    d1d3c2beedd3994a420a6ea564c4f7b0_JaffaCakes118

  • Size

    24.5MB

  • Sample

    240907-nk7kessakp

  • MD5

    d1d3c2beedd3994a420a6ea564c4f7b0

  • SHA1

    6af67d44db77fadb5b2fe7c4a490d21fc9c11524

  • SHA256

    d18f00770117c1c7846c9f30f5e9a9519717105d4708c8946f7a67f0765ae2f3

  • SHA512

    b73719bab79a5381acdb607f0229f30c17d38da6ec975e33bae916bf2dfe6c0c994549a120ccd283e57c3246c9e8131d6fafba1286f5734a1eb0d197bc844b5f

  • SSDEEP

    98304:XX77GBfWz77GBfWogYOXwnS4rVowIDQANU+Cgadd:vGBfW7GBfW6IEuQhjH

Score
7/10
discoverypersistencespywarestealer

Malware Config

Targets

    • Target

      d1d3c2beedd3994a420a6ea564c4f7b0_JaffaCakes118

    • Size

      24.5MB

    • MD5

      d1d3c2beedd3994a420a6ea564c4f7b0

    • SHA1

      6af67d44db77fadb5b2fe7c4a490d21fc9c11524

    • SHA256

      d18f00770117c1c7846c9f30f5e9a9519717105d4708c8946f7a67f0765ae2f3

    • SHA512

      b73719bab79a5381acdb607f0229f30c17d38da6ec975e33bae916bf2dfe6c0c994549a120ccd283e57c3246c9e8131d6fafba1286f5734a1eb0d197bc844b5f

    • SSDEEP

      98304:XX77GBfWz77GBfWogYOXwnS4rVowIDQANU+Cgadd:vGBfW7GBfW6IEuQhjH

    Score
    7/10
    discoverypersistencespywarestealer

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks