Overview

overview

10

Static

static

10

45de19db96...18.exe

windows7-x64

8

45de19db96...18.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    45de19db96387888c544ed23e0d3c262_JaffaCakes118

  • Size

    19KB

  • Sample

    241015-e7namayhkm

  • MD5

    45de19db96387888c544ed23e0d3c262

  • SHA1

    c39e2895b395ece3f8f87bee94fe7f63da07ed5d

  • SHA256

    859d6e97784d475df795ab771f80f77398c4defb259e646be189def63ccd348b

  • SHA512

    77ecc018d4ab0e070aebb032ba43885935909f14efb9296901da4e79ab3161b42ea1c1d9bdf47ed3bf1502f36e99fca1b79b8c3d108dcb91b2a1c4dfce5babec

  • SSDEEP

    384:6ebFNw4Pk1itKkpAjjI2YpdmvHuBsrQMkEHm1aH+fKSWq:60FmBkpKjPYpZPh1a6td

Score
10/10
xoristdiscoverypersistencespywarestealer

Malware Config

Targets

    • Target

      45de19db96387888c544ed23e0d3c262_JaffaCakes118

    • Size

      19KB

    • MD5

      45de19db96387888c544ed23e0d3c262

    • SHA1

      c39e2895b395ece3f8f87bee94fe7f63da07ed5d

    • SHA256

      859d6e97784d475df795ab771f80f77398c4defb259e646be189def63ccd348b

    • SHA512

      77ecc018d4ab0e070aebb032ba43885935909f14efb9296901da4e79ab3161b42ea1c1d9bdf47ed3bf1502f36e99fca1b79b8c3d108dcb91b2a1c4dfce5babec

    • SSDEEP

      384:6ebFNw4Pk1itKkpAjjI2YpdmvHuBsrQMkEHm1aH+fKSWq:60FmBkpKjPYpZPh1a6td

    Score
    8/10
    discoverypersistencespywarestealer

    • Drops file in Drivers directory

    • Drops startup file

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks