Overview

overview

7

Static

static

3

10bc66a6d0...18.exe

windows7-x64

7

10bc66a6d0...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    10bc66a6d0ed6ed35a6e4e9e61b84559_JaffaCakes118

  • Size

    1.0MB

  • Sample

    241003-2bnmvazemm

  • MD5

    10bc66a6d0ed6ed35a6e4e9e61b84559

  • SHA1

    026a032728b392a869129b1b378cedcff406aa12

  • SHA256

    6dc1ad63c3f81b4ee869c9797f74367d42b9045f3840faa266c40b345d92012b

  • SHA512

    4d8994bd88ed8ace24b6ff2736a880d3c6a154f03d2e56e86cab8e1c377f526d88c053193614011dfe1ef15e963c81a1284601450b01e368d154c434a2efcfe0

  • SSDEEP

    24576:PLiJ2OCaGTMLYO1t0sfqIcLUmGxnk0Be0LkFprq4bc:PLYMMLRNfq0tk0Be0LkO4bc

Score
7/10
adwarediscoveryspywarestealer

Malware Config

Targets

    • Target

      10bc66a6d0ed6ed35a6e4e9e61b84559_JaffaCakes118

    • Size

      1.0MB

    • MD5

      10bc66a6d0ed6ed35a6e4e9e61b84559

    • SHA1

      026a032728b392a869129b1b378cedcff406aa12

    • SHA256

      6dc1ad63c3f81b4ee869c9797f74367d42b9045f3840faa266c40b345d92012b

    • SHA512

      4d8994bd88ed8ace24b6ff2736a880d3c6a154f03d2e56e86cab8e1c377f526d88c053193614011dfe1ef15e963c81a1284601450b01e368d154c434a2efcfe0

    • SSDEEP

      24576:PLiJ2OCaGTMLYO1t0sfqIcLUmGxnk0Be0LkFprq4bc:PLYMMLRNfq0tk0Be0LkO4bc

    Score
    7/10
    adwarediscoveryspywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops Chrome extension

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks