Overview

overview

8

Static

static

3

d6ace72084...18.exe

windows7-x64

8

d6ace72084...18.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    d6ace720840868cce72932a6b8ef7191_JaffaCakes118

  • Size

    7.4MB

  • Sample

    240909-tqsw4szcpg

  • MD5

    d6ace720840868cce72932a6b8ef7191

  • SHA1

    aeb45fa1d384d67cb4e8bd3d334a2f377dd4efc9

  • SHA256

    4f73e0edf413f58e989677e285a473de523ca24c7dd8720bc62ec65018e7070b

  • SHA512

    4fa8bb0cffe40717d44c1883f688c3bb065b444489fdc252c76abf52312438721ed031ade7af03332cecae6d81333edff8988ec03df50b0e1107000a2317c6c9

  • SSDEEP

    49152:mC4HcVUcSAZat9TNlyyFFdpnRHGE0f7QLZzu/if/:mC48VmJyyFNs

Score
8/10
discoverypersistencespywarestealer

Malware Config

Targets

    • Target

      d6ace720840868cce72932a6b8ef7191_JaffaCakes118

    • Size

      7.4MB

    • MD5

      d6ace720840868cce72932a6b8ef7191

    • SHA1

      aeb45fa1d384d67cb4e8bd3d334a2f377dd4efc9

    • SHA256

      4f73e0edf413f58e989677e285a473de523ca24c7dd8720bc62ec65018e7070b

    • SHA512

      4fa8bb0cffe40717d44c1883f688c3bb065b444489fdc252c76abf52312438721ed031ade7af03332cecae6d81333edff8988ec03df50b0e1107000a2317c6c9

    • SSDEEP

      49152:mC4HcVUcSAZat9TNlyyFFdpnRHGE0f7QLZzu/if/:mC48VmJyyFNs

    Score
    8/10
    discoverypersistencespywarestealer

    • Drops file in Drivers directory

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks