e3d0d9a9606bf69206cc2ce41bb37d875ead83101e15ca6d38d0f15e4ef004c1 | Triage

Sharing

General

Target

ea7d3047606d6022a5bee36d72e7a389_JaffaCakes118
Size

525KB
Sample

240919-dwa1gsybjd
MD5

ea7d3047606d6022a5bee36d72e7a389
SHA1

a4b04097c69da39db776ba0239c1ed9fdea939bc
SHA256

e3d0d9a9606bf69206cc2ce41bb37d875ead83101e15ca6d38d0f15e4ef004c1
SHA512

2c39f04c6d034a4476b67b9c4c7a3a48818bfa8fd416d65e40971c24a264143f59e182093dee62c2acc1e45d9e23e55e77226cbea77fbc926c41c35488dcde2a
SSDEEP

384:xSdD9d6GoPbrV/Z/dnRi1huh4XEKZ9hEQKIguqnH0XkNJSz53zzkFVpU:gYvb3iDuhwPqnGkNJShzzkL2

Score

6^/10

adware discovery stealer

Malware Config

Targets

- Target
  
  ea7d3047606d6022a5bee36d72e7a389_JaffaCakes118
- Size
  
  525KB
- MD5
  
  ea7d3047606d6022a5bee36d72e7a389
- SHA1
  
  a4b04097c69da39db776ba0239c1ed9fdea939bc
- SHA256
  
  e3d0d9a9606bf69206cc2ce41bb37d875ead83101e15ca6d38d0f15e4ef004c1
- SHA512
  
  2c39f04c6d034a4476b67b9c4c7a3a48818bfa8fd416d65e40971c24a264143f59e182093dee62c2acc1e45d9e23e55e77226cbea77fbc926c41c35488dcde2a
- SSDEEP
  
  384:xSdD9d6GoPbrV/Z/dnRi1huh4XEKZ9hEQKIguqnH0XkNJSz53zzkFVpU:gYvb3iDuhwPqnGkNJShzzkL2
Score

6^/10

discovery adware stealer
- Installs/modifies Browser Helper Object
  BHOs are DLL modules which act as plugins for Internet Explorer.
  stealer adware
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Browser Extensions

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

adwarediscoverystealer