Resubmissions

16-12-2024 12:25

241216-pls9vszpex 10

15-12-2024 04:22

241215-ey8j7swkam 10

General

  • Target

    f24516e2e02ab686e09717a81c107361_JaffaCakes118

  • Size

    28KB

  • Sample

    241216-pls9vszpex

  • MD5

    f24516e2e02ab686e09717a81c107361

  • SHA1

    381f0ebaaf5e6680003d3c2faff66435e75e70fa

  • SHA256

    c425e7ac539d1829382242ccc5201c520cda3d3f219bd80241c5ddc5b355733e

  • SHA512

    0e36547ba20883ffcf6475a54cda201190488701c248786e0691ca628952f8620a57fe859c900cb0d139777f0005e644b04f633d9dcee0bcc1821514bfdcb24b

  • SSDEEP

    384:1vxBbK26lj5Id8SpHx9jLhsznnVxA1WmP5w7GGCJlqqwMyNrpjaCNgw:Dv8IRRdsxq1DjJcqf0jaK

Malware Config

Targets

    • Target

      f24516e2e02ab686e09717a81c107361_JaffaCakes118

    • Size

      28KB

    • MD5

      f24516e2e02ab686e09717a81c107361

    • SHA1

      381f0ebaaf5e6680003d3c2faff66435e75e70fa

    • SHA256

      c425e7ac539d1829382242ccc5201c520cda3d3f219bd80241c5ddc5b355733e

    • SHA512

      0e36547ba20883ffcf6475a54cda201190488701c248786e0691ca628952f8620a57fe859c900cb0d139777f0005e644b04f633d9dcee0bcc1821514bfdcb24b

    • SSDEEP

      384:1vxBbK26lj5Id8SpHx9jLhsznnVxA1WmP5w7GGCJlqqwMyNrpjaCNgw:Dv8IRRdsxq1DjJcqf0jaK

    • Detects MyDoom family

    • MyDoom

      MyDoom is a Worm that is written in C++.

    • Mydoom family

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks