Overview

overview

10

Static

static

3

d39d5146d4...18.exe

windows7-x64

10

d39d5146d4...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    d39d5146d4c16958ce2a6b8191c97210_JaffaCakes118

  • Size

    72KB

  • Sample

    240908-ft86lsydjp

  • MD5

    d39d5146d4c16958ce2a6b8191c97210

  • SHA1

    078ad76ecf3fabaa5d85f8c5a14819f102313147

  • SHA256

    f1b512e7fc34e2eb57e7c66404f7d84e911bb5787f17fdd3006bc509e29b49c9

  • SHA512

    bf4f31f4096f970ccd526de182d037759a2753377652d36623446c9d2bb2eda2e00b3ea97a2543a27b2c5439f9e065b6d6c521195470f199ced11afc1260a2a3

  • SSDEEP

    1536:LsBUTJMiFFD5bUnkRrtjQ4z1ZNMKPPdau9OXZ1r9HjXx:Lseh35AnSrt87Ir05jx

Score
10/10
discoveryevasionexecutionspywarestealer

Malware Config

Targets

    • Target

      d39d5146d4c16958ce2a6b8191c97210_JaffaCakes118

    • Size

      72KB

    • MD5

      d39d5146d4c16958ce2a6b8191c97210

    • SHA1

      078ad76ecf3fabaa5d85f8c5a14819f102313147

    • SHA256

      f1b512e7fc34e2eb57e7c66404f7d84e911bb5787f17fdd3006bc509e29b49c9

    • SHA512

      bf4f31f4096f970ccd526de182d037759a2753377652d36623446c9d2bb2eda2e00b3ea97a2543a27b2c5439f9e065b6d6c521195470f199ced11afc1260a2a3

    • SSDEEP

      1536:LsBUTJMiFFD5bUnkRrtjQ4z1ZNMKPPdau9OXZ1r9HjXx:Lseh35AnSrt87Ir05jx

    Score
    10/10
    discoveryevasionexecutionspywarestealer

    • Disables service(s)

      evasionexecution

    • Stops running service(s)

      evasionexecution

    • Deletes itself

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks