Overview

overview

7

Static

static

3

5342065004...18.exe

windows7-x64

7

5342065004...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    53420650046640d233e88409922b53d8_JaffaCakes118

  • Size

    1.1MB

  • Sample

    241017-xwnq5a1cpb

  • MD5

    53420650046640d233e88409922b53d8

  • SHA1

    52cee63c0a2030ef96191257dbb645087962ebb6

  • SHA256

    91f7fa5a1d91fa9650198b8286985a30f5cdcbc021bce6d7006707fdd961d205

  • SHA512

    10f35e5d48113dabb087c7814b5e1d2c7d9003b04a16602a292ad9b9803d4bf1c8febd08351d4dc462a525a80b6909cda263bc19b5562029c920f6017512114a

  • SSDEEP

    24576:nxllVmuE1SmzsNtmslkrMlskmNYyajyTioJiYYlS4WK1aGbTo/vs6:nxJ+17wNtmyRlskyYy4LYuz1BoHs6

Score
7/10
adwarediscoveryspywarestealer

Malware Config

Targets

    • Target

      53420650046640d233e88409922b53d8_JaffaCakes118

    • Size

      1.1MB

    • MD5

      53420650046640d233e88409922b53d8

    • SHA1

      52cee63c0a2030ef96191257dbb645087962ebb6

    • SHA256

      91f7fa5a1d91fa9650198b8286985a30f5cdcbc021bce6d7006707fdd961d205

    • SHA512

      10f35e5d48113dabb087c7814b5e1d2c7d9003b04a16602a292ad9b9803d4bf1c8febd08351d4dc462a525a80b6909cda263bc19b5562029c920f6017512114a

    • SSDEEP

      24576:nxllVmuE1SmzsNtmslkrMlskmNYyajyTioJiYYlS4WK1aGbTo/vs6:nxJ+17wNtmyRlskyYy4LYuz1BoHs6

    Score
    7/10
    adwarediscoveryspywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops Chrome extension

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks