Overview

overview

7

Static

static

3

38931983f1...18.exe

windows7-x64

7

38931983f1...18.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    38931983f10f4be4fc989e72ceedd161_JaffaCakes118

  • Size

    113KB

  • Sample

    241012-fzffgsvhne

  • MD5

    38931983f10f4be4fc989e72ceedd161

  • SHA1

    98a522f54c8c9d00ccc2904167641e1ea085d813

  • SHA256

    c9475723e5371481c8aeb1666934fa31532ed2928056766da082dbd5eaba1a40

  • SHA512

    7106871fdc9bf0c54424d52c20a8de078e8ff73fe4f74fb26c4066c8a3ffdda190035729c8c7db42a0f5104782f0cfb600f694fbf7def8c19b1f5d4a3384e45a

  • SSDEEP

    1536:ICMcGjGCdDcEDGcp/NH4P/s/9JS3WJiMVYBELdfZYsZD/0Uj3KA4Z/umlvdDGRHT:1MxPpLH4M/SSvVYqYsHj6rckiRHv1U

Score
7/10
discoverypersistencespywarestealerupx

Malware Config

Targets

    • Target

      38931983f10f4be4fc989e72ceedd161_JaffaCakes118

    • Size

      113KB

    • MD5

      38931983f10f4be4fc989e72ceedd161

    • SHA1

      98a522f54c8c9d00ccc2904167641e1ea085d813

    • SHA256

      c9475723e5371481c8aeb1666934fa31532ed2928056766da082dbd5eaba1a40

    • SHA512

      7106871fdc9bf0c54424d52c20a8de078e8ff73fe4f74fb26c4066c8a3ffdda190035729c8c7db42a0f5104782f0cfb600f694fbf7def8c19b1f5d4a3384e45a

    • SSDEEP

      1536:ICMcGjGCdDcEDGcp/NH4P/s/9JS3WJiMVYBELdfZYsZD/0Uj3KA4Z/umlvdDGRHT:1MxPpLH4M/SSvVYqYsHj6rckiRHv1U

    Score
    7/10
    discoverypersistencespywarestealerupx

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks