Overview

overview

7

Static

static

3

106291b884...18.exe

windows7-x64

7

106291b884...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    106291b88427f5fcf309d80afac46c10_JaffaCakes118

  • Size

    670KB

  • Sample

    241003-y4tg1sybmf

  • MD5

    106291b88427f5fcf309d80afac46c10

  • SHA1

    a19c9edfdd6d3f057543d35fc380a5459a878c3f

  • SHA256

    09e8d691d046440631c14952b1533c3bf482f4b6fa9587bd229eb2e39c648f9c

  • SHA512

    fa040c8361a5c221be13ef3672ca01f1cd28147b6144b269e58fbcd43840c80d5c026fb63c3918e7f9ad00f36c78e484121e3d01671dc4bf9feb9b2532712671

  • SSDEEP

    12288:8hdsll5H+iYbHW7CQV1POhmmp+ZGnTtmg3Fxx7JvdakTNacsvHN:8hiH+iYb27CQjcmi+QnTN3vJxdjpaDN

Score
7/10
discoveryspywarestealer

Malware Config

Targets

    • Target

      106291b88427f5fcf309d80afac46c10_JaffaCakes118

    • Size

      670KB

    • MD5

      106291b88427f5fcf309d80afac46c10

    • SHA1

      a19c9edfdd6d3f057543d35fc380a5459a878c3f

    • SHA256

      09e8d691d046440631c14952b1533c3bf482f4b6fa9587bd229eb2e39c648f9c

    • SHA512

      fa040c8361a5c221be13ef3672ca01f1cd28147b6144b269e58fbcd43840c80d5c026fb63c3918e7f9ad00f36c78e484121e3d01671dc4bf9feb9b2532712671

    • SSDEEP

      12288:8hdsll5H+iYbHW7CQV1POhmmp+ZGnTtmg3Fxx7JvdakTNacsvHN:8hiH+iYb27CQjcmi+QnTN3vJxdjpaDN

    Score
    7/10
    discoveryspywarestealer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Drops Chrome extension

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks