Overview

overview

7

Static

static

3

127a49389a...18.exe

windows7-x64

7

127a49389a...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    127a49389a2d5f4b581691deb988ff0c_JaffaCakes118

  • Size

    725KB

  • Sample

    241004-jr5l7awgpc

  • MD5

    127a49389a2d5f4b581691deb988ff0c

  • SHA1

    9a6ea9e777496279576d101c8f6e325518d01870

  • SHA256

    f8780593284917fac4cf27d60236c1875baa638bb3e515ae346cc0b05869604a

  • SHA512

    b8933f51183062785afdea80475ba931f4d519e55a8ed7313dbb3f47bc05ae8845cf1aa3aba80ee233d38c8cb63ee2e0bfb1850373f6b2036413cf032bb205e0

  • SSDEEP

    12288:h1OgLdaOPo99/rsFEt5hDG0SAMs9jR/jeRJKu9TJdwYGZtyjTje5jOSpJc:h1OYdaOPOBsFEt5hDG0SAMs9jR/jaJnF

Score
7/10
adwarediscoveryspywarestealer

Malware Config

Targets

    • Target

      127a49389a2d5f4b581691deb988ff0c_JaffaCakes118

    • Size

      725KB

    • MD5

      127a49389a2d5f4b581691deb988ff0c

    • SHA1

      9a6ea9e777496279576d101c8f6e325518d01870

    • SHA256

      f8780593284917fac4cf27d60236c1875baa638bb3e515ae346cc0b05869604a

    • SHA512

      b8933f51183062785afdea80475ba931f4d519e55a8ed7313dbb3f47bc05ae8845cf1aa3aba80ee233d38c8cb63ee2e0bfb1850373f6b2036413cf032bb205e0

    • SSDEEP

      12288:h1OgLdaOPo99/rsFEt5hDG0SAMs9jR/jeRJKu9TJdwYGZtyjTje5jOSpJc:h1OYdaOPOBsFEt5hDG0SAMs9jR/jaJnF

    Score
    7/10
    adwarediscoveryspywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops Chrome extension

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks