Overview

overview

7

Static

static

3

128d49765c...18.exe

windows7-x64

7

128d49765c...18.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    128d49765c825ca9aeaa71da3af77453_JaffaCakes118

  • Size

    1.0MB

  • Sample

    241004-j7kxqatcll

  • MD5

    128d49765c825ca9aeaa71da3af77453

  • SHA1

    8c7ea3d3be733f2eb760b8b9078bbbfa01a02cfd

  • SHA256

    605ea7b2d418b0605c78cc7b85eb6ab755c9b217c7541e18432b15c4985902ec

  • SHA512

    f5d040b8b565391ada23a6636367f2d36db1a972df49d889d4782709ac7be4cd727d06d3917d6dfa4fd5094bb93c504dc198b0e7c6e0d975c70214e631b8c06e

  • SSDEEP

    24576:tLiBqe+wHesDspLl/F8b908UpAGbyGrcgcS18Q0ghiiF8keuDv07WwO:tLMqe7DspLl/wUpHOspcxQNhxxbDc7Y

Score
7/10
adwarediscoveryspywarestealer

Malware Config

Targets

    • Target

      128d49765c825ca9aeaa71da3af77453_JaffaCakes118

    • Size

      1.0MB

    • MD5

      128d49765c825ca9aeaa71da3af77453

    • SHA1

      8c7ea3d3be733f2eb760b8b9078bbbfa01a02cfd

    • SHA256

      605ea7b2d418b0605c78cc7b85eb6ab755c9b217c7541e18432b15c4985902ec

    • SHA512

      f5d040b8b565391ada23a6636367f2d36db1a972df49d889d4782709ac7be4cd727d06d3917d6dfa4fd5094bb93c504dc198b0e7c6e0d975c70214e631b8c06e

    • SSDEEP

      24576:tLiBqe+wHesDspLl/F8b908UpAGbyGrcgcS18Q0ghiiF8keuDv07WwO:tLMqe7DspLl/wUpHOspcxQNhxxbDc7Y

    Score
    7/10
    adwarediscoveryspywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops Chrome extension

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks