Overview

overview

7

Static

static

3

16baba1579...18.exe

windows7-x64

7

16baba1579...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    16baba1579de333a878ffc1a26db4b7c_JaffaCakes118

  • Size

    725KB

  • Sample

    241005-jakwfsshjp

  • MD5

    16baba1579de333a878ffc1a26db4b7c

  • SHA1

    75356a0595265ee450dca8bef97e75d68c9d29f7

  • SHA256

    1b91853b925ed7b92a47f3c825c384a0aecb6b22ff06429ea046736c76decc1b

  • SHA512

    5f3918e4e8bd177eb3fa24454b649d9559fef245c12d9e789d5f27a4416f1dd8406f1030a0c99fbb6b10bc5e2e19ae3c9abcd7c507875d9f9c71b59aee64b2d1

  • SSDEEP

    12288:h1OgLdaOgo99/rsFEt5hDG0SAMs9jR/jeRJKu9TJdwYGZtyjTje5jOSpJk:h1OYdaOgOBsFEt5hDG0SAMs9jR/jaJnT

Score
7/10
adwarediscoveryspywarestealer

Malware Config

Targets

    • Target

      16baba1579de333a878ffc1a26db4b7c_JaffaCakes118

    • Size

      725KB

    • MD5

      16baba1579de333a878ffc1a26db4b7c

    • SHA1

      75356a0595265ee450dca8bef97e75d68c9d29f7

    • SHA256

      1b91853b925ed7b92a47f3c825c384a0aecb6b22ff06429ea046736c76decc1b

    • SHA512

      5f3918e4e8bd177eb3fa24454b649d9559fef245c12d9e789d5f27a4416f1dd8406f1030a0c99fbb6b10bc5e2e19ae3c9abcd7c507875d9f9c71b59aee64b2d1

    • SSDEEP

      12288:h1OgLdaOgo99/rsFEt5hDG0SAMs9jR/jeRJKu9TJdwYGZtyjTje5jOSpJk:h1OYdaOgOBsFEt5hDG0SAMs9jR/jaJnT

    Score
    7/10
    adwarediscoveryspywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops Chrome extension

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks