Overview

overview

7

Static

static

3

0260c60a99...18.exe

windows7-x64

7

0260c60a99...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    0260c60a9945cd330ad485aee8caacdd_JaffaCakes118

  • Size

    1.8MB

  • Sample

    240930-vjw6mawcrn

  • MD5

    0260c60a9945cd330ad485aee8caacdd

  • SHA1

    b0c8cef727ae82c539d2b0ee1ccb28547efc99ea

  • SHA256

    c73fdb4cba7ee97121aca0e20ae29b6dcacfaf397d9778ca33a51a24524e3721

  • SHA512

    5d9ff63e8f3e2ff038f8e0ce052909f8c76f68bf5384abf8df86b6696b960a014b003d6bc1c0cef47b4cd9f5ea05de34f621fe7ab4966ee13889d2b40b155058

  • SSDEEP

    24576:KJH8bfUJH8b6oLOsDFncLmKDZOSzXFZUvxywHF8z3j5D7JaT+KVvrSrtUx:wfoEz0vxpHF+3j5D78OBU

Score
7/10
discoverypersistencespywarestealer

Malware Config

Targets

    • Target

      0260c60a9945cd330ad485aee8caacdd_JaffaCakes118

    • Size

      1.8MB

    • MD5

      0260c60a9945cd330ad485aee8caacdd

    • SHA1

      b0c8cef727ae82c539d2b0ee1ccb28547efc99ea

    • SHA256

      c73fdb4cba7ee97121aca0e20ae29b6dcacfaf397d9778ca33a51a24524e3721

    • SHA512

      5d9ff63e8f3e2ff038f8e0ce052909f8c76f68bf5384abf8df86b6696b960a014b003d6bc1c0cef47b4cd9f5ea05de34f621fe7ab4966ee13889d2b40b155058

    • SSDEEP

      24576:KJH8bfUJH8b6oLOsDFncLmKDZOSzXFZUvxywHF8z3j5D7JaT+KVvrSrtUx:wfoEz0vxpHF+3j5D78OBU

    Score
    7/10
    discoverypersistencespywarestealer

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks