Overview

overview

7

Static

static

3

f54b052c17...18.exe

windows7-x64

7

f54b052c17...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    f54b052c1711b5dc7db1625f50db8221_JaffaCakes118

  • Size

    459KB

  • Sample

    240925-f6743s1anb

  • MD5

    f54b052c1711b5dc7db1625f50db8221

  • SHA1

    7e6d1a1919673dc9f27324db668649d65f02447d

  • SHA256

    a636be86ad5e2d3dddd2a0bb9419021f91a0df96800617e4f0745f6850ad7651

  • SHA512

    a1a8ab11bc8fff580dff6d880c45ba423d4211124e45b58b0220ad4a8556eef9683457040bf6a7177a0c6cf629f391caf1c63738e53ac21d3f6ad0406796402a

  • SSDEEP

    6144:0wftvCBD/Yu/OQJY/N0y9sG+uWEsb3bz45RflafV3L+8cfSt134:02CBD/Yx/qEh+FVTITaN+8cfj

Score
7/10
credential_accessdiscoveryspywarestealer

Malware Config

Targets

    • Target

      f54b052c1711b5dc7db1625f50db8221_JaffaCakes118

    • Size

      459KB

    • MD5

      f54b052c1711b5dc7db1625f50db8221

    • SHA1

      7e6d1a1919673dc9f27324db668649d65f02447d

    • SHA256

      a636be86ad5e2d3dddd2a0bb9419021f91a0df96800617e4f0745f6850ad7651

    • SHA512

      a1a8ab11bc8fff580dff6d880c45ba423d4211124e45b58b0220ad4a8556eef9683457040bf6a7177a0c6cf629f391caf1c63738e53ac21d3f6ad0406796402a

    • SSDEEP

      6144:0wftvCBD/Yu/OQJY/N0y9sG+uWEsb3bz45RflafV3L+8cfSt134:02CBD/Yx/qEh+FVTITaN+8cfj

    Score
    7/10
    credential_accessdiscoveryspywarestealer

    • Reads data files stored by FTP clients

      Tries to access configuration files associated with programs like FileZilla.

      spywarestealer

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Unsecured Credentials: Credentials In Files

      Steal credentials from unsecured files.

      credential_accessstealer

    • Drops desktop.ini file(s)

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks