Overview

overview

6

Static

static

3

1a224c34d7...18.dll

windows7-x64

6

1a224c34d7...18.dll

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1a224c34d7fc70ac2c73a790dcb6929d_JaffaCakes118

  • Size

    20KB

  • Sample

    240628-pskw3aseml

  • MD5

    1a224c34d7fc70ac2c73a790dcb6929d

  • SHA1

    911d25cec784a0e1e105c5f1aaf1f132f8be6d34

  • SHA256

    e5edb226921d8ee387c36029a3dd2d49030fd52bbd5566e9fed853f72f163d40

  • SHA512

    18a25ee100e9f498363ff4ca3e33ece12f24922d3bdfec31745dc119d3a3a62bd93d7c767d9a6323ed6a2a006ee7cf37a105ebd30c674152e094de17f3ff8017

  • SSDEEP

    384:VlPyZNjtU2mMICVRQXAK4gGvEv0MfNHPGkGUR4pz7cnkkokLbgr:VdyZ8CbKtvNJR+YnkkA

Score
6/10
adwarestealer

Malware Config

Targets

    • Target

      1a224c34d7fc70ac2c73a790dcb6929d_JaffaCakes118

    • Size

      20KB

    • MD5

      1a224c34d7fc70ac2c73a790dcb6929d

    • SHA1

      911d25cec784a0e1e105c5f1aaf1f132f8be6d34

    • SHA256

      e5edb226921d8ee387c36029a3dd2d49030fd52bbd5566e9fed853f72f163d40

    • SHA512

      18a25ee100e9f498363ff4ca3e33ece12f24922d3bdfec31745dc119d3a3a62bd93d7c767d9a6323ed6a2a006ee7cf37a105ebd30c674152e094de17f3ff8017

    • SSDEEP

      384:VlPyZNjtU2mMICVRQXAK4gGvEv0MfNHPGkGUR4pz7cnkkokLbgr:VdyZ8CbKtvNJR+YnkkA

    Score
    6/10
    adwarestealer

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Browser Extensions

1
T1176

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks