Overview

overview

7

Static

static

3

0b1606c89b...18.exe

windows7-x64

7

0b1606c89b...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0b1606c89b7d2c5944ea0172821eac85_JaffaCakes118

  • Size

    1.0MB

  • Sample

    241002-rmvkesvakg

  • MD5

    0b1606c89b7d2c5944ea0172821eac85

  • SHA1

    4831d0fef3401c542387c47bf08ec81c10534dce

  • SHA256

    33f1d108a714bd358eb3667d67692106d1a70ccd51fd9ac7593baec2da52cdf7

  • SHA512

    be0af29135fbddfbb63eb6394458f8e68dde53bfccc6454ba655fb953ed3d2a0a71cde7d5ef516f5f2ea45aa7a2f06fddd142ba3f456e9677da0a6877836eedf

  • SSDEEP

    24576:4LiMbh9a0D7Q/fHsk/bnS/dWvY3rllCdcj8mErCUP9ug0ozCSB:4LrbCQ7QXznSVy+lQcj/hK99

Score
7/10
adwarediscoveryspywarestealer

Malware Config

Targets

    • Target

      0b1606c89b7d2c5944ea0172821eac85_JaffaCakes118

    • Size

      1.0MB

    • MD5

      0b1606c89b7d2c5944ea0172821eac85

    • SHA1

      4831d0fef3401c542387c47bf08ec81c10534dce

    • SHA256

      33f1d108a714bd358eb3667d67692106d1a70ccd51fd9ac7593baec2da52cdf7

    • SHA512

      be0af29135fbddfbb63eb6394458f8e68dde53bfccc6454ba655fb953ed3d2a0a71cde7d5ef516f5f2ea45aa7a2f06fddd142ba3f456e9677da0a6877836eedf

    • SSDEEP

      24576:4LiMbh9a0D7Q/fHsk/bnS/dWvY3rllCdcj8mErCUP9ug0ozCSB:4LrbCQ7QXznSVy+lQcj/hK99

    Score
    7/10
    adwarediscoveryspywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops Chrome extension

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks