Overview

overview

7

Static

static

7

fce389b64b...18.exe

windows7-x64

7

fce389b64b...18.exe

windows10-2004-x64

6

Sharing

Copy URL Twitter E-mail

General

  • Target

    fce389b64b4dfe94646f1f918b599727_JaffaCakes118

  • Size

    23KB

  • Sample

    240928-w22z9ssenc

  • MD5

    fce389b64b4dfe94646f1f918b599727

  • SHA1

    2d993b9a72109c34f496b15cc29c139b704dbfad

  • SHA256

    a8a5bace66bd7d7173adc7aabdf1bbd07b4bee8f6964e701b806675a4dffdd6f

  • SHA512

    ac46a2de9a5f5cba1d3c7d23e1f31056f6bb0da7c03a97a9705955232bb6431bbe89b37bdc6329ea3a843e027506028c269742a0317c17524606d8f3af98cfec

  • SSDEEP

    384:6nkLuyaO4yvoW04KRoTCIWpHq7mTJhKj38Imr4HAxfr6+e9Pfqbn1+:6nWNqePH2nKK3qkxxOha5+

Score
7/10
adwareaspackv2discoverypersistencestealer

Malware Config

Targets

    • Target

      fce389b64b4dfe94646f1f918b599727_JaffaCakes118

    • Size

      23KB

    • MD5

      fce389b64b4dfe94646f1f918b599727

    • SHA1

      2d993b9a72109c34f496b15cc29c139b704dbfad

    • SHA256

      a8a5bace66bd7d7173adc7aabdf1bbd07b4bee8f6964e701b806675a4dffdd6f

    • SHA512

      ac46a2de9a5f5cba1d3c7d23e1f31056f6bb0da7c03a97a9705955232bb6431bbe89b37bdc6329ea3a843e027506028c269742a0317c17524606d8f3af98cfec

    • SSDEEP

      384:6nkLuyaO4yvoW04KRoTCIWpHq7mTJhKj38Imr4HAxfr6+e9Pfqbn1+:6nWNqePH2nKK3qkxxOha5+

    Score
    7/10
    adwarediscoverypersistencestealer

    • Deletes itself

    • Adds Run key to start application

      persistence

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks