Overview

overview

10

Static

static

3

fdb2737425...18.exe

windows7-x64

10

fdb2737425...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    fdb27374252ddd49e388a5ee1ab465b4_JaffaCakes118

  • Size

    160KB

  • Sample

    240929-dt217axgrl

  • MD5

    fdb27374252ddd49e388a5ee1ab465b4

  • SHA1

    9f67f0d1b68ddcbe1595a1a5b52a68549c3ffc97

  • SHA256

    de92d75e7695e2f74cc5ca2066aa4a583f3c8d5a0133b35c7f0856aef26b2324

  • SHA512

    b890a0bd46e8da3e17d109ab5162fccfd2ed3737beb30102965445af62f9acda082cbc9de72575d593e8be4036d74a5e0b1f9197ba01e6d674b3996c361755af

  • SSDEEP

    3072:WVY0KBbbvSCYoOKUcS4P/KEAZUBhZgGkDP5PKOsOeknOciAnqviLT:Wm0KBvDzOKtDPSEAZkhZgngaBiA

Score
10/10
discoverypersistencespywarestealerupx

Malware Config

Targets

    • Target

      fdb27374252ddd49e388a5ee1ab465b4_JaffaCakes118

    • Size

      160KB

    • MD5

      fdb27374252ddd49e388a5ee1ab465b4

    • SHA1

      9f67f0d1b68ddcbe1595a1a5b52a68549c3ffc97

    • SHA256

      de92d75e7695e2f74cc5ca2066aa4a583f3c8d5a0133b35c7f0856aef26b2324

    • SHA512

      b890a0bd46e8da3e17d109ab5162fccfd2ed3737beb30102965445af62f9acda082cbc9de72575d593e8be4036d74a5e0b1f9197ba01e6d674b3996c361755af

    • SSDEEP

      3072:WVY0KBbbvSCYoOKUcS4P/KEAZUBhZgGkDP5PKOsOeknOciAnqviLT:Wm0KBvDzOKtDPSEAZkhZgngaBiA

    Score
    10/10
    discoverypersistencespywarestealerupx

    • Modifies WinLogon for persistence

      persistence

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks