Overview

overview

7

Static

static

3

1652ceae1b...18.exe

windows7-x64

7

1652ceae1b...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1652ceae1bf5be58732c0046c6349fa7_JaffaCakes118

  • Size

    1.3MB

  • Sample

    241005-f2g24asana

  • MD5

    1652ceae1bf5be58732c0046c6349fa7

  • SHA1

    0678acfac3c033961e411956a1f4eb3c9943c38e

  • SHA256

    5407aeb5af6be382f738221dafdfe01a38b40ab15aea34555a64040d8a501dcc

  • SHA512

    a66d9ea6102fcf0a831371d1538a722e1822e6bf63443ff966ba1476d0183fa03db61869a06ca05de18a9520a43c2347591e4bac74761539e1e1fc0101816190

  • SSDEEP

    24576:zgFvyVFyuvGRWI0Gnl3UVP3zY8HEwpzxz0DLacT06K:zQqVFyKa3eP3zVHEwpdz0DucT5K

Score
7/10
discoveryevasionspywarestealertrojan

Malware Config

Targets

    • Target

      1652ceae1bf5be58732c0046c6349fa7_JaffaCakes118

    • Size

      1.3MB

    • MD5

      1652ceae1bf5be58732c0046c6349fa7

    • SHA1

      0678acfac3c033961e411956a1f4eb3c9943c38e

    • SHA256

      5407aeb5af6be382f738221dafdfe01a38b40ab15aea34555a64040d8a501dcc

    • SHA512

      a66d9ea6102fcf0a831371d1538a722e1822e6bf63443ff966ba1476d0183fa03db61869a06ca05de18a9520a43c2347591e4bac74761539e1e1fc0101816190

    • SSDEEP

      24576:zgFvyVFyuvGRWI0Gnl3UVP3zY8HEwpzxz0DLacT06K:zQqVFyKa3eP3zVHEwpdz0DucT5K

    Score
    7/10
    discoveryevasionspywarestealertrojan

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks whether UAC is enabled

      evasiontrojan
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks