Overview

overview

7

Static

static

3

27e26a5b54...18.exe

windows7-x64

7

27e26a5b54...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    27e26a5b5458e622dfd37304698450cb_JaffaCakes118

  • Size

    1.0MB

  • Sample

    241009-a1wwzavbml

  • MD5

    27e26a5b5458e622dfd37304698450cb

  • SHA1

    6e9ac22187cac9ecb689b2af5fee2744f9ce4862

  • SHA256

    2d175a4ac69f6e8a6735f575c49150a6af304d19008ecf947f1fa49c884c1bbd

  • SHA512

    b01cb2233e66c6653c657ad059302bb5efe327657aadfa0d75424dc2d6f9db9e2321dafff3892c90b48556ab9560bd49adb51f6d42a2d8688920b93ee54f46f2

  • SSDEEP

    12288:DKnekrL5856QQY2X3fvfCWvbS3CUg4PJEpNxoaXDrqbvfY8hhPzWLdslM9i2631/:4LicQQfXvXlvbahixfTrIBPyLdwRgnIj

Score
7/10
adwarediscoveryspywarestealer

Malware Config

Targets

    • Target

      27e26a5b5458e622dfd37304698450cb_JaffaCakes118

    • Size

      1.0MB

    • MD5

      27e26a5b5458e622dfd37304698450cb

    • SHA1

      6e9ac22187cac9ecb689b2af5fee2744f9ce4862

    • SHA256

      2d175a4ac69f6e8a6735f575c49150a6af304d19008ecf947f1fa49c884c1bbd

    • SHA512

      b01cb2233e66c6653c657ad059302bb5efe327657aadfa0d75424dc2d6f9db9e2321dafff3892c90b48556ab9560bd49adb51f6d42a2d8688920b93ee54f46f2

    • SSDEEP

      12288:DKnekrL5856QQY2X3fvfCWvbS3CUg4PJEpNxoaXDrqbvfY8hhPzWLdslM9i2631/:4LicQQfXvXlvbahixfTrIBPyLdwRgnIj

    Score
    7/10
    adwarediscoveryspywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops Chrome extension

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks