Overview

overview

7

Static

static

3

03e6fa84e4...18.exe

windows7-x64

7

03e6fa84e4...18.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    03e6fa84e4ab6243671f14563aad7b51_JaffaCakes118

  • Size

    156KB

  • Sample

    241001-bx3qsavakk

  • MD5

    03e6fa84e4ab6243671f14563aad7b51

  • SHA1

    8e25bf8717f007832ec54a82060ef6a16e748044

  • SHA256

    6da5b6896b3181ad14991340d6886cae627aae9bbee58ef2cded692267c1f7ca

  • SHA512

    40d014b72f9eb47637d78156bd73bfa884dc7d7e22a243f9b4218c6124e687ac3d685a56b30121c772f8d618f1fffa009c9992fd7d93736e9d90545df8bff5a0

  • SSDEEP

    3072:CYiYqa4rWYd3HANohGG6QvXhRAzj8qtDak0ZQRYrKBvevjG2D:CnaA3gNsh6Q3AX8C2/QRYqvqf

Score
7/10
discoverypersistencespywarestealerupx

Malware Config

Targets

    • Target

      03e6fa84e4ab6243671f14563aad7b51_JaffaCakes118

    • Size

      156KB

    • MD5

      03e6fa84e4ab6243671f14563aad7b51

    • SHA1

      8e25bf8717f007832ec54a82060ef6a16e748044

    • SHA256

      6da5b6896b3181ad14991340d6886cae627aae9bbee58ef2cded692267c1f7ca

    • SHA512

      40d014b72f9eb47637d78156bd73bfa884dc7d7e22a243f9b4218c6124e687ac3d685a56b30121c772f8d618f1fffa009c9992fd7d93736e9d90545df8bff5a0

    • SSDEEP

      3072:CYiYqa4rWYd3HANohGG6QvXhRAzj8qtDak0ZQRYrKBvevjG2D:CnaA3gNsh6Q3AX8C2/QRYqvqf

    Score
    7/10
    discoverypersistencespywarestealerupx

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks