Overview

overview

10

Static

static

5

fb7f311c72...18.exe

windows7-x64

10

fb7f311c72...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    fb7f311c724b5634fbff8893c90caa7e_JaffaCakes118

  • Size

    32KB

  • Sample

    240928-ezmn5awhqm

  • MD5

    fb7f311c724b5634fbff8893c90caa7e

  • SHA1

    b699d65d4d6cc19832bd277d8eb824b5c454c9a9

  • SHA256

    26d1c17627cace8b1de05fa5c542e5934ee8f79c12235048a5a865174c50b229

  • SHA512

    6f4bfd1e458e1c8fa48bd7620440aab9e3cbfe2d356c38c123b973b7408485b9afaebe0961c70de607fda456f72a3c79e941270216964b4b43ae292908855e12

  • SSDEEP

    768:JGCFhVReQmX4OzZWXl9oII879e8xtZbKKEw/+3fb:JTHReTXXzsXl9gQDZOVfb

Score
10/10
discoveryevasionexecutionspywarestealerupx

Malware Config

Targets

    • Target

      fb7f311c724b5634fbff8893c90caa7e_JaffaCakes118

    • Size

      32KB

    • MD5

      fb7f311c724b5634fbff8893c90caa7e

    • SHA1

      b699d65d4d6cc19832bd277d8eb824b5c454c9a9

    • SHA256

      26d1c17627cace8b1de05fa5c542e5934ee8f79c12235048a5a865174c50b229

    • SHA512

      6f4bfd1e458e1c8fa48bd7620440aab9e3cbfe2d356c38c123b973b7408485b9afaebe0961c70de607fda456f72a3c79e941270216964b4b43ae292908855e12

    • SSDEEP

      768:JGCFhVReQmX4OzZWXl9oII879e8xtZbKKEw/+3fb:JTHReTXXzsXl9gQDZOVfb

    Score
    10/10
    discoveryevasionexecutionspywarestealerupx

    • Disables service(s)

      evasionexecution

    • Stops running service(s)

      evasionexecution

    • Deletes itself

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops file in System32 directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks