Overview

overview

7

Static

static

3

2b56d59881...18.exe

windows7-x64

7

2b56d59881...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    2b56d59881e5bc3c92310f759299033c_JaffaCakes118

  • Size

    784KB

  • Sample

    241009-fpxl1svdkd

  • MD5

    2b56d59881e5bc3c92310f759299033c

  • SHA1

    c4c757ccdc9f0b2dfee88b50566ce58c5a7f442c

  • SHA256

    5e2493a9b43ceaa90d8bb532e5d94b297c1f307972dbea351af7659ee66754a2

  • SHA512

    1950e15277bbe436de6800ba43d01d1c2371f6b30b74a76cbd8c458095bbdd59fdfe603f6899fb9067ff8dba0a2f913d0df5a59a91ad05cb7bc607822babcbaf

  • SSDEEP

    24576:h1OYdaOvOBsFEt5hDG0SAMs9jR/jaJnTJdwYS4je592:h1OsYOEt5hDG0SAMs9j8nTJ2YFe592

Score
7/10
adwarediscoveryspywarestealer

Malware Config

Targets

    • Target

      2b56d59881e5bc3c92310f759299033c_JaffaCakes118

    • Size

      784KB

    • MD5

      2b56d59881e5bc3c92310f759299033c

    • SHA1

      c4c757ccdc9f0b2dfee88b50566ce58c5a7f442c

    • SHA256

      5e2493a9b43ceaa90d8bb532e5d94b297c1f307972dbea351af7659ee66754a2

    • SHA512

      1950e15277bbe436de6800ba43d01d1c2371f6b30b74a76cbd8c458095bbdd59fdfe603f6899fb9067ff8dba0a2f913d0df5a59a91ad05cb7bc607822babcbaf

    • SSDEEP

      24576:h1OYdaOvOBsFEt5hDG0SAMs9jR/jaJnTJdwYS4je592:h1OsYOEt5hDG0SAMs9j8nTJ2YFe592

    Score
    7/10
    adwarediscoveryspywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks