Overview

overview

7

Static

static

3

3c6926af6f...18.exe

windows7-x64

7

3c6926af6f...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3c6926af6ff126cd9706b8a459c14c35_JaffaCakes118

  • Size

    717KB

  • Sample

    241012-2m9z8avhkd

  • MD5

    3c6926af6ff126cd9706b8a459c14c35

  • SHA1

    2bf4ec912dde944111516f7bf65daaedfdcd8316

  • SHA256

    05326c36aa602c9f44def42ef22c599b8870c7921e5496eac9f37f0d1853a357

  • SHA512

    917ab79fc95d5941c7b5bbfe476388684705a994e4cd7d96f6c44c524b3807b747e92a8d2e44dcd743235b143c924680675fdc7d7c15b81cdfdc8abb566e7402

  • SSDEEP

    12288:UKnekrL58xWOrk5asHzqk1wPZE41jHOH/PIsq4YZz0Z6Pt5ZU8qbadLztNe7U:9LiMOrLeGEkuAsqr+6F5Z+aA7U

Score
7/10
adwarediscoveryspywarestealer

Malware Config

Targets

    • Target

      3c6926af6ff126cd9706b8a459c14c35_JaffaCakes118

    • Size

      717KB

    • MD5

      3c6926af6ff126cd9706b8a459c14c35

    • SHA1

      2bf4ec912dde944111516f7bf65daaedfdcd8316

    • SHA256

      05326c36aa602c9f44def42ef22c599b8870c7921e5496eac9f37f0d1853a357

    • SHA512

      917ab79fc95d5941c7b5bbfe476388684705a994e4cd7d96f6c44c524b3807b747e92a8d2e44dcd743235b143c924680675fdc7d7c15b81cdfdc8abb566e7402

    • SSDEEP

      12288:UKnekrL58xWOrk5asHzqk1wPZE41jHOH/PIsq4YZz0Z6Pt5ZU8qbadLztNe7U:9LiMOrLeGEkuAsqr+6F5Z+aA7U

    Score
    7/10
    adwarediscoveryspywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops Chrome extension

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks