1ab205eb6abc3a4a90d278afa261886827955242af86fa448c51ed49c626cb03 | Triage

Sharing

General

Target

280d6ae4fe54d19f6ce9930cbc6772a3_JaffaCakes118
Size

163KB
Sample

241009-a932mszdnf
MD5

280d6ae4fe54d19f6ce9930cbc6772a3
SHA1

f1ff0557fe8324c50d93b0f50201a097d68d06a9
SHA256

1ab205eb6abc3a4a90d278afa261886827955242af86fa448c51ed49c626cb03
SHA512

e825b91f968b6ee3aff3b218af5cbe9bc3a2aeb5bf7350cba558e42a192c54157fd42665649a4226de97582ff099391a0563bb2e4a59665dc62383f93fcd66ce
SSDEEP

3072:WxY3o6KKf/YyxDddbFdeG5zAUESrHre/PWXQdzjmkMh3mKS1oNEivLnPGv8V:WY3ErSddDeG5zF9bre/uX6zB+3mH1o+Y

Score

7^/10

adware discovery stealer

Malware Config

Targets

- Target
  
  280d6ae4fe54d19f6ce9930cbc6772a3_JaffaCakes118
- Size
  
  163KB
- MD5
  
  280d6ae4fe54d19f6ce9930cbc6772a3
- SHA1
  
  f1ff0557fe8324c50d93b0f50201a097d68d06a9
- SHA256
  
  1ab205eb6abc3a4a90d278afa261886827955242af86fa448c51ed49c626cb03
- SHA512
  
  e825b91f968b6ee3aff3b218af5cbe9bc3a2aeb5bf7350cba558e42a192c54157fd42665649a4226de97582ff099391a0563bb2e4a59665dc62383f93fcd66ce
- SSDEEP
  
  3072:WxY3o6KKf/YyxDddbFdeG5zAUESrHre/PWXQdzjmkMh3mKS1oNEivLnPGv8V:WY3ErSddDeG5zF9bre/uX6zB+3mH1o+Y
Score

7^/10

adware discovery stealer
- Loads dropped DLL
- Installs/modifies Browser Helper Object
  BHOs are DLL modules which act as plugins for Internet Explorer.
  stealer adware
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Browser Extensions

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

adwarediscoverystealer

behavioral2

adwarediscoverystealer