Overview

overview

7

Static

static

3

5692487f20...18.exe

windows7-x64

7

5692487f20...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    5692487f20395e780c211fcf38fa737d_JaffaCakes118

  • Size

    1.0MB

  • Sample

    241018-k18kwaybpe

  • MD5

    5692487f20395e780c211fcf38fa737d

  • SHA1

    2e0979da06d03e03f24295c9fd8f275028371ea6

  • SHA256

    266f7895d2305a95faa8c67d8408eb9edac04108c38405a70b328ce684c0acda

  • SHA512

    6752f790ca295dfc231a777867353ea0a1281138fadbf0efeb276d302dc3696196a8940cc465d25bedd8dd7e366545cd20fbfb843298c0c6131c4e9a75d8e81a

  • SSDEEP

    24576:4LizNTg69vnQCwx/wg0C9M6SfylMCW5T2XOadd6blE4dqNbPfSp:4L6kxY8M6wylMl5T2XOadd6blBdE6p

Score
7/10
adwarediscoveryspywarestealer

Malware Config

Targets

    • Target

      5692487f20395e780c211fcf38fa737d_JaffaCakes118

    • Size

      1.0MB

    • MD5

      5692487f20395e780c211fcf38fa737d

    • SHA1

      2e0979da06d03e03f24295c9fd8f275028371ea6

    • SHA256

      266f7895d2305a95faa8c67d8408eb9edac04108c38405a70b328ce684c0acda

    • SHA512

      6752f790ca295dfc231a777867353ea0a1281138fadbf0efeb276d302dc3696196a8940cc465d25bedd8dd7e366545cd20fbfb843298c0c6131c4e9a75d8e81a

    • SSDEEP

      24576:4LizNTg69vnQCwx/wg0C9M6SfylMCW5T2XOadd6blE4dqNbPfSp:4L6kxY8M6wylMl5T2XOadd6blBdE6p

    Score
    7/10
    adwarediscoveryspywarestealer

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops Chrome extension

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks