053b4572b7e96cca40c85f81111d7e5cf05ba7f730d593283cd5be9f8cdfcb1a | Triage

Sharing

General

Target

deff72ee14de327855e1f6fad4cf1b6d_JaffaCakes118
Size

72KB
Sample

240913-164f4ssfpd
MD5

deff72ee14de327855e1f6fad4cf1b6d
SHA1

d5cdf47196e3de0dbcc0b34a6abe5e322ae13178
SHA256

053b4572b7e96cca40c85f81111d7e5cf05ba7f730d593283cd5be9f8cdfcb1a
SHA512

0c88afdbc40c5fb4d20a2d9ced131c0fbb08a709227c2e25f7a8458df5b321ccc5dbb8c05958a9c7dfd31c765c57df684c48d8d4654e8b64ea380be0cd5f21e1
SSDEEP

1536:o5YvbQqAXcuSJv5RK2DowuGzT7hGU+yVFgOHAKXF8/n:MILAMZvTv+GLUUHVFXgKXFa

Score

7^/10

adware discovery stealer

Malware Config

Targets

- Target
  
  deff72ee14de327855e1f6fad4cf1b6d_JaffaCakes118
- Size
  
  72KB
- MD5
  
  deff72ee14de327855e1f6fad4cf1b6d
- SHA1
  
  d5cdf47196e3de0dbcc0b34a6abe5e322ae13178
- SHA256
  
  053b4572b7e96cca40c85f81111d7e5cf05ba7f730d593283cd5be9f8cdfcb1a
- SHA512
  
  0c88afdbc40c5fb4d20a2d9ced131c0fbb08a709227c2e25f7a8458df5b321ccc5dbb8c05958a9c7dfd31c765c57df684c48d8d4654e8b64ea380be0cd5f21e1
- SSDEEP
  
  1536:o5YvbQqAXcuSJv5RK2DowuGzT7hGU+yVFgOHAKXF8/n:MILAMZvTv+GLUUHVFXgKXFa
Score

7^/10

adware discovery stealer
- Loads dropped DLL
- Installs/modifies Browser Helper Object
  BHOs are DLL modules which act as plugins for Internet Explorer.
  stealer adware
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Browser Extensions

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

adwarediscoverystealer

behavioral2

adwarediscoverystealer