f35efe6c3228f5f46fa5a5e65d8262fefa446d6cbe6645d5a3647107314e14b8 | Triage

Sharing

General

Target

0aa5e5b45270d69f338e250dca468c19_JaffaCakes118
Size

116KB
Sample

241002-plgwtswbmp
MD5

0aa5e5b45270d69f338e250dca468c19
SHA1

475e8d4e3afc5b00facccbf72727d66fc8d397b5
SHA256

f35efe6c3228f5f46fa5a5e65d8262fefa446d6cbe6645d5a3647107314e14b8
SHA512

974b74812c46c875653015e205743715c9e28215cce76aa9b012d4ab4403c67502fec2ece32bca12f260b08359da426a623d0723543767390252283e83946bd4
SSDEEP

3072:4N0hAfNv1uD7j2LHv4rNBEiSdjiS69XnuegLiQnpt/fzRYgMl4mmoVFswCf:4NJx8ueEVnH/fzRYBlFXWw

Score

6^/10

adware discovery stealer

Malware Config

Targets

- Target
  
  0aa5e5b45270d69f338e250dca468c19_JaffaCakes118
- Size
  
  116KB
- MD5
  
  0aa5e5b45270d69f338e250dca468c19
- SHA1
  
  475e8d4e3afc5b00facccbf72727d66fc8d397b5
- SHA256
  
  f35efe6c3228f5f46fa5a5e65d8262fefa446d6cbe6645d5a3647107314e14b8
- SHA512
  
  974b74812c46c875653015e205743715c9e28215cce76aa9b012d4ab4403c67502fec2ece32bca12f260b08359da426a623d0723543767390252283e83946bd4
- SSDEEP
  
  3072:4N0hAfNv1uD7j2LHv4rNBEiSdjiS69XnuegLiQnpt/fzRYgMl4mmoVFswCf:4NJx8ueEVnH/fzRYBlFXWw
Score

6^/10

adware discovery stealer
- Installs/modifies Browser Helper Object
  BHOs are DLL modules which act as plugins for Internet Explorer.
  stealer adware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Browser Extensions

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

adwarediscoverystealer

behavioral2

adwarediscoverystealer