Overview

overview

7

Static

static

3

eab65ba8de...18.exe

windows7-x64

7

eab65ba8de...18.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    eab65ba8de394e35c208bdbe90a29a62_JaffaCakes118

  • Size

    172KB

  • Sample

    240919-gnrj2sthpj

  • MD5

    eab65ba8de394e35c208bdbe90a29a62

  • SHA1

    52e3fa0399dcfab923f72d4118ce4899d2a07970

  • SHA256

    1af1a2e1edca05e85ea78b693859a479e95dccda7048ae26804933f7f69796f3

  • SHA512

    5be731fb649dcd719a1bb3eed6940c35d5a2821e46952507e9f573acd9bef1bec5cfd139088cdec36ee2997ad7379b73e06f5f1647b56017a7f58f3f977c8d73

  • SSDEEP

    3072:oLjGkKWcuraMMD613oynbmJFQjioJc5UtG8zY5iAy7C5r63QIphzTk44rVnFB:gjXcwmbAoQxJfzK+iSphz8P

Score
7/10
discoverypersistencespywarestealerupx

Malware Config

Targets

    • Target

      eab65ba8de394e35c208bdbe90a29a62_JaffaCakes118

    • Size

      172KB

    • MD5

      eab65ba8de394e35c208bdbe90a29a62

    • SHA1

      52e3fa0399dcfab923f72d4118ce4899d2a07970

    • SHA256

      1af1a2e1edca05e85ea78b693859a479e95dccda7048ae26804933f7f69796f3

    • SHA512

      5be731fb649dcd719a1bb3eed6940c35d5a2821e46952507e9f573acd9bef1bec5cfd139088cdec36ee2997ad7379b73e06f5f1647b56017a7f58f3f977c8d73

    • SSDEEP

      3072:oLjGkKWcuraMMD613oynbmJFQjioJc5UtG8zY5iAy7C5r63QIphzTk44rVnFB:gjXcwmbAoQxJfzK+iSphz8P

    Score
    7/10
    discoverypersistencespywarestealerupx

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks