c5e359aa39003dc15a3a7a554e8b6e0a5ac42932e9958f006fc17e9005a820a9 | Triage

Submit
Reports

Overview

overview

7

Static

static

7

f582ae154b...18.exe

windows7-x64

7

f582ae154b...18.exe

windows10-2004-x64

7

Sharing

General

Target

f582ae154b776dfac6b226447d7ca1a4_JaffaCakes118
Size

405KB
Sample

240925-jfml8swdjb
MD5

f582ae154b776dfac6b226447d7ca1a4
SHA1

c8c5c0a4a4697f7e616de7237c28909987eb1b4c
SHA256

c5e359aa39003dc15a3a7a554e8b6e0a5ac42932e9958f006fc17e9005a820a9
SHA512

d7e667e81b6133dd5c96a3ea5d22a1cb5a447a654d08df830d094d53da32d98c77ea6b18f840c100881537972732ca20f693a99970a3bc80c596e9aefba1cd74
SSDEEP

12288:E0JhDF7VSejUIj1KTYVI80SvxBBjeWzQ7:E07VStMgkVJZh9Q7

Score

7^/10

adware aspackv2 discovery stealer

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

f582ae154b776dfac6b226447d7ca1a4_JaffaCakes118.exe

Resource

win7-20240903-en

adware aspackv2 discovery stealer

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

f582ae154b776dfac6b226447d7ca1a4_JaffaCakes118.exe

Resource

win10v2004-20240802-en

adware aspackv2 discovery stealer

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  f582ae154b776dfac6b226447d7ca1a4_JaffaCakes118
- Size
  
  405KB
- MD5
  
  f582ae154b776dfac6b226447d7ca1a4
- SHA1
  
  c8c5c0a4a4697f7e616de7237c28909987eb1b4c
- SHA256
  
  c5e359aa39003dc15a3a7a554e8b6e0a5ac42932e9958f006fc17e9005a820a9
- SHA512
  
  d7e667e81b6133dd5c96a3ea5d22a1cb5a447a654d08df830d094d53da32d98c77ea6b18f840c100881537972732ca20f693a99970a3bc80c596e9aefba1cd74
- SSDEEP
  
  12288:E0JhDF7VSejUIj1KTYVI80SvxBBjeWzQ7:E07VStMgkVJZh9Q7
Score

7^/10

adware aspackv2 discovery stealer
- ASPack v2.12-2.42
  Detects executables packed with ASPack v2.12-2.42
  aspackv2
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
- Installs/modifies Browser Helper Object
  BHOs are DLL modules which act as plugins for Internet Explorer.
  stealer adware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Browser Extensions

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

adwareaspackv2discoverystealer

behavioral2

adwareaspackv2discoverystealer

© 2018-2025

Terms | Privacy