123bd5ac25ed381a1d1534a4a4f7818ce5d94a31d1dfbac0b967e6114aac07ba

Sharing

Copy URL Twitter E-mail

General

Target

521f873b274af0ae57fddfaa516dfce5_JaffaCakes118
Size

1017KB
Sample

241017-p39yya1hjk
MD5

521f873b274af0ae57fddfaa516dfce5
SHA1

f879e085718b88e37da3a8c607e04c79a984654e
SHA256

123bd5ac25ed381a1d1534a4a4f7818ce5d94a31d1dfbac0b967e6114aac07ba
SHA512

bea5db5b1dd0220d01e325cd105ec97b00d1db6705cd7af3263ae839ea508361e0190597cdb0ebbd3dc74bbf8c28e2c25901da70c2fa1f92214af2febfc3d066
SSDEEP

24576:6zA1PQgZQkIpCyBk68KohNXNPYZLX0W5uPjVod+RZa:71Pl8T8KqNgL7uLeL

Score

7^/10

Malware Config

Targets

- Target
  
  521f873b274af0ae57fddfaa516dfce5_JaffaCakes118
- Size
  
  1017KB
- MD5
  
  521f873b274af0ae57fddfaa516dfce5
- SHA1
  
  f879e085718b88e37da3a8c607e04c79a984654e
- SHA256
  
  123bd5ac25ed381a1d1534a4a4f7818ce5d94a31d1dfbac0b967e6114aac07ba
- SHA512
  
  bea5db5b1dd0220d01e325cd105ec97b00d1db6705cd7af3263ae839ea508361e0190597cdb0ebbd3dc74bbf8c28e2c25901da70c2fa1f92214af2febfc3d066
- SSDEEP
  
  24576:6zA1PQgZQkIpCyBk68KohNXNPYZLX0W5uPjVod+RZa:71Pl8T8KqNgL7uLeL
Score

7^/10

adware discovery spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
- Installs/modifies Browser Helper Object
  BHOs are DLL modules which act as plugins for Internet Explorer.
  stealer adware
- Drops file in System32 directory
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/Math.dll
- Size
  
  66KB
- MD5
  
  b140459077c7c39be4bef249c2f84535
- SHA1
  
  c56498241c2ddafb01961596da16d08d1b11cd35
- SHA256
  
  0598f7d83db44929b7170c1285457b52b4281185f63ced102e709bf065f10d67
- SHA512
  
  fbcb19a951d96a216d73b6b3e005338bbb6e11332c6cc8c3f179ccd420b4db0e5682dc4245bd120dcb67bc70960eab368e74c68c7c165a485a12a7d0d8a00328
- SSDEEP
  
  1536:0P43WZ4Ql60gam+2MwRmPeqFVHbQH0ZZ1Iet:0wU609VMH0T/t
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  11KB
- MD5
  
  c17103ae9072a06da581dec998343fc1
- SHA1
  
  b72148c6bdfaada8b8c3f950e610ee7cf1da1f8d
- SHA256
  
  dc58d8ad81cacb0c1ed72e33bff8f23ea40b5252b5bb55d393a0903e6819ae2f
- SHA512
  
  d32a71aaef18e993f28096d536e41c4d016850721b31171513ce28bbd805a54fd290b7c3e9d935f72e676a1acfb4f0dcc89d95040a0dd29f2b6975855c18986f
- SSDEEP
  
  192:7DKnJZCv6VmbJQC+tFiUdK7ckD4gRXKQx+LQ2CSF:7ViJrtFRdbmXK8+PCw
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/UAC.dll
- Size
  
  17KB
- MD5
  
  88ad3fd90fc52ac3ee0441a38400a384
- SHA1
  
  08bc9e1f5951b54126b5c3c769e3eaed42f3d10b
- SHA256
  
  e58884695378cf02715373928bb8ade270baf03144369463f505c3b3808cbc42
- SHA512
  
  359496f571e6fa2ec4c5ab5bd1d35d1330586f624228713ae55c65a69e07d8623022ef54337c22c3aab558a9b74d9977c8436f5fea4194899d9ef3ffd74e7dbb
- SSDEEP
  
  384:59TzaeW+WyB8c7LX+OGkrwWvVrkUiEMAWm5nskAvXkq:5ZaB+W62Mr5vGUiEum5sk
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  $R1
- Size
  
  1.6MB
- MD5
  
  7b541c6a4638c3098dc8539109d20888
- SHA1
  
  a8a9928072fc51bea2b5ad938da0193b19cf90d1
- SHA256
  
  270cf871e4515a0bb122dcd7abab911c7939b841ae641f0b6944844aee4cbe50
- SHA512
  
  88b069b7a54a709a7060afdebe15b06ca44084ed2839c473714071d654828379f3e1e834c9f3a8d4bbe8dbb56e4ee83380ab2b8ef2834270fe6950fbfc7ddca5
- SSDEEP
  
  24576:v4SXK2zKtpTeiCvtIEWmidSxHDernzURAZzVHcs/bL5JyHz8XEdlXIFw93KVMPSH:eUeFkmb4Hj3fPST7uU6KDf
Score

6^/10

adware discovery stealer
- Installs/modifies Browser Helper Object
  BHOs are DLL modules which act as plugins for Internet Explorer.
  stealer adware
behavioral10 behavioral9