General

  • Target

    8dcdea69795e744f63b1e4f781f60aca_JaffaCakes118

  • Size

    46KB

  • Sample

    240402-qpndfsbe68

  • MD5

    8dcdea69795e744f63b1e4f781f60aca

  • SHA1

    189f32dbc0a393136053daf7bd655443fc9ccb4e

  • SHA256

    b1329bc8d394b50e9f4fdc06488e712e5759c4452be6bd70fa2908a21e7f1006

  • SHA512

    36b3348e5e32a12ab9b5e18cbb28583e76cedba5f7e72af05a25e1d7b542d1e2301fb4a46678d8415d31c485d57def4550f63fa8d575324e275ee8456a02c76c

  • SSDEEP

    768:XtwyMe0Jy8xwd117mrlI9m/xGuv4V7RMEnqt9jn2ACH3hLZ2HwCLlH:Xtwyedxwr1qUMv4VV6j2A83hVY

Malware Config

Targets

    • Target

      8dcdea69795e744f63b1e4f781f60aca_JaffaCakes118

    • Size

      46KB

    • MD5

      8dcdea69795e744f63b1e4f781f60aca

    • SHA1

      189f32dbc0a393136053daf7bd655443fc9ccb4e

    • SHA256

      b1329bc8d394b50e9f4fdc06488e712e5759c4452be6bd70fa2908a21e7f1006

    • SHA512

      36b3348e5e32a12ab9b5e18cbb28583e76cedba5f7e72af05a25e1d7b542d1e2301fb4a46678d8415d31c485d57def4550f63fa8d575324e275ee8456a02c76c

    • SSDEEP

      768:XtwyMe0Jy8xwd117mrlI9m/xGuv4V7RMEnqt9jn2ACH3hLZ2HwCLlH:Xtwyedxwr1qUMv4VV6j2A83hVY

    • Tinba / TinyBanker

      Banking trojan which uses packet sniffing to steal data.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks