e7d49cf8cb2426a9cde6c5818319cf86bea582d0b36de25718b3f82f918dc8bc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5436f440ba26e8df23405560d042ad9e_JaffaCakes118
Size

389KB
Sample

241017-3ememavhnm
MD5

5436f440ba26e8df23405560d042ad9e
SHA1

3c84a57f99f7c50125a91d84f897413b017dc82d
SHA256

e7d49cf8cb2426a9cde6c5818319cf86bea582d0b36de25718b3f82f918dc8bc
SHA512

7a3bf8d13a13ca25bedc7da2b9180a6d442938f51ffc6f430354af5d8508ade73594341ed5d6a30b9473ec02d5cdba4fae96f728fee0b2c28238315223348fdc
SSDEEP

12288:qOXCyw8rXiLi6MDV8/n4PDm+0Ekgqji7cl:Q8rX4HMDV8/ncz0jYcl

Score

6^/10

adware discovery stealer

Malware Config

Targets

- Target
  
  9553绿色软件站.htm
- Size
  
  861B
- MD5
  
  03033cdf475f981a1777c0fef43f8700
- SHA1
  
  8ba65dc9adaf9fdcaf86efddc4c626e2cf26668e
- SHA256
  
  89439c037b34a0511f794c1f98e8a52a64910dfb8faa93e62522b83a98b327e9
- SHA512
  
  edb1b1a710733a2eb236e2d2920884754f88846fac4e6bde1fcf98d719db1211eb9b9f4ee18a560e9a7243b7caabccbe642fb8e02db4fd62c6d7b059717d35f1
Score

3^/10

discovery
behavioral1 behavioral2
- Target
  
  setup_iesuper.exe
- Size
  
  413KB
- MD5
  
  b24eef3ab89b3ccd2ac9cf2709546886
- SHA1
  
  a3458a647040f1713f1ee098f448fe5f002e67d8
- SHA256
  
  669bbd20e9818777d729060caed05b7066972fc557717b14f8ef8e04b52214c6
- SHA512
  
  bbe432270dabb4c025c965573abeb122ee870c0e9e15be6011bed68a52612b5aacbddab41e565cbf70a6aab33058b98d9071abb7da89b0101d64f1d8576f7dc8
- SSDEEP
  
  6144:wNfQK7STNejsszI+RetO0H0pcPbU7J9+tceJHkU5470Y3++/Lorlf/:sFSTkjLfetO0wx3iBHR6N/cJ/
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/InstallOptions.dll
- Size
  
  13KB
- MD5
  
  9b2bdf058d377da28704af9ca3ef1142
- SHA1
  
  0fc0d7fbc4c3a65eec33d9577ed38e545b3cc04b
- SHA256
  
  92f34db47c34d6867e6928d4a9cd27747ff642392c0e361f9cab2f5d8c4df300
- SHA512
  
  ba0c2a312732832874642f6ca8d3b5aa4274da5cbb3a09d990b442becdf9a1abb98c61c5cbbb55f6a5341d2997388d01f93f69e4946e923a1892c7621775b93f
- SSDEEP
  
  192:pK6RrZcTOIiQP00nXGqk3XsGZ4djZbfhhjv6WoF1dBaRp:I6RNcTPPVXG0kIjZbXjv6bBu
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  MicroBlog.exe
- Size
  
  527KB
- MD5
  
  85990ee3684d35534edf3d596ce15781
- SHA1
  
  67da8e0b382461fe625dbe768c01b03e2d880383
- SHA256
  
  4af5e52cdbb186a168b43e7ebe2b80156e0c772514b18d98cc26a04a0bca5438
- SHA512
  
  3bab48555a5379c825627a46e2e2f5465920e898612b83108946dba3dcbfb2468000f9a4e487bae0215aa0387cf8fab4fddebf1e087be0b47fde77be300da8fe
- SSDEEP
  
  6144:pJpPvWDn58wNxwox5PGY5MkZ5vOt2Tzn38U2ADTfohOpBwfH2Hrm6u5gUR4pxo:pXWDniwCjkHkSn38FuY+BwfHp6DURX
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  iesuper.dll
- Size
  
  335KB
- MD5
  
  b304bb557fd6e915668df2e3c78317a2
- SHA1
  
  43fa4b9c2546a4c0785b93bc3db97a28915893fc
- SHA256
  
  7247854b9d379d7a779a065f2b08806606f6e5cfa6abd3b040cc1f5ee8a7e91b
- SHA512
  
  8fff1a734617b5df8f754f97aa7fe2c2720112d150d29a4ee2e540f185153e8385c358968468654f4774c28af648b21ca25cf6477044e76f2142a23dc7ef22a2
- SSDEEP
  
  6144:ooVvrBgUR4SE0sDhbe6DlrM/dABCcHOY91jvtpGow6cZIbJ:oQZE04e2rMYuYHjfbJ
Score

6^/10

adware discovery stealer
- Installs/modifies Browser Helper Object
  BHOs are DLL modules which act as plugins for Internet Explorer.
  stealer adware
behavioral10 behavioral9
- Target
  
  template.htm
- Size
  
  2KB
- MD5
  
  b5f7929aaad1832ab16759ab11be8f99
- SHA1
  
  911bb0bef1a0e6c0c7a88cd8c1284e49383384f7
- SHA256
  
  fab64962f2f66416217be0d8df3771c7c1e069451b5f5f093d51a7d549075db1
- SHA512
  
  9d24abc4190a1769b1d9e95b4d7423c38d68c38cbcf135720a94b415cf5c45b391327852696b6eca7a3c4b71f880b67d9ed3c10a50758ea0e2e3c43737221157
Score

3^/10

discovery
behavioral11 behavioral12
- Target
  
  淘宝特价打折区.url
- Size
  
  173B
- MD5
  
  539d8d3d536f0755934ddb097f358bad
- SHA1
  
  179cdb87469428c3db35e75bd77425ccb019ce58
- SHA256
  
  19d6d40641ab8cf68d3576aa76a7d1aabc634f7bda180d2b22155f950ed4323d
- SHA512
  
  8a40d807138977552715c4d5a850edaf20d14fa6b7c5e813b8f0a97c3931fe1937ccaf81f665d1f33cfa6ada8f15afb8d294acb7dc15fc4f7b00897c7ad21e50
Score

1^/10
behavioral13 behavioral14

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Browser Extensions

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Browser Information Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

adwarediscoverystealer

behavioral10

adwarediscoverystealer

behavioral11

behavioral12

behavioral13

behavioral14