Overview

overview

10

Static

static

7

eec4560154...18.exe

windows7-x64

10

eec4560154...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    eec456015479026f2a24f3dd8806eca0_JaffaCakes118

  • Size

    94KB

  • Sample

    240921-a93qwaxdmg

  • MD5

    eec456015479026f2a24f3dd8806eca0

  • SHA1

    336a227d820fb2c6c8e8644e01b170e48f07d82f

  • SHA256

    d90dd97fbeca4377a9783c3ecc84889982fdbdd920ed4c1d04d879c68ac834c7

  • SHA512

    bc0e67e67c1695dc92ed9540560f92becd565caefe45880e0e8635e8df4cca99244256b30c1982df98b5c4911991c868303ff5e3838881a51615f8564e642097

  • SSDEEP

    1536:LOM0m2EQFVRfF1nfbghAN4v/8om9lPMSk/+FOyj0XJJ2aErQNHjFZ:LO/Eo7t1nfboAGDslPMSkuO9AxrQNHjr

Score
10/10
adwareaspackv2defense_evasiondiscoverypersistencestealer

Malware Config

Targets

    • Target

      eec456015479026f2a24f3dd8806eca0_JaffaCakes118

    • Size

      94KB

    • MD5

      eec456015479026f2a24f3dd8806eca0

    • SHA1

      336a227d820fb2c6c8e8644e01b170e48f07d82f

    • SHA256

      d90dd97fbeca4377a9783c3ecc84889982fdbdd920ed4c1d04d879c68ac834c7

    • SHA512

      bc0e67e67c1695dc92ed9540560f92becd565caefe45880e0e8635e8df4cca99244256b30c1982df98b5c4911991c868303ff5e3838881a51615f8564e642097

    • SSDEEP

      1536:LOM0m2EQFVRfF1nfbghAN4v/8om9lPMSk/+FOyj0XJJ2aErQNHjFZ:LO/Eo7t1nfboAGDslPMSkuO9AxrQNHjr

    Score
    10/10
    adwaredefense_evasiondiscoverypersistencestealer

    • Modifies WinLogon for persistence

      persistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Indicator Removal: File Deletion

      Adversaries may delete files left behind by the actions of their intrusion activity.

      defense_evasion

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks