General

  • Target

    a27f999d279a9b0a06af4ecdc9eb39e1_JaffaCakes118

  • Size

    6.6MB

  • Sample

    240403-wbc88agb4x

  • MD5

    a27f999d279a9b0a06af4ecdc9eb39e1

  • SHA1

    d0455ffff34952110b4e3fa384d1394e49a7c596

  • SHA256

    643789beaf9683bc8cb084f5d270ed7a30969d5a70016cb393fda59a064f7934

  • SHA512

    b133dd34f0d682887d05fe1465be523de76e1c3ba72cd7d11266d7b001e8018643239ef64dc15f771b3e39cd9957e9502e8649089c113e3f1eb467b91d24b261

  • SSDEEP

    49152:qdJTnLF3wxROMZ/e6rrQBx1feqij/XG8IUWvZeB1iPt9yZ5R80qUvPhUm1b5ElhD:2R3at0Ug9C5R9v51EnZ8ynG

Score
7/10

Malware Config

Targets

    • Target

      a27f999d279a9b0a06af4ecdc9eb39e1_JaffaCakes118

    • Size

      6.6MB

    • MD5

      a27f999d279a9b0a06af4ecdc9eb39e1

    • SHA1

      d0455ffff34952110b4e3fa384d1394e49a7c596

    • SHA256

      643789beaf9683bc8cb084f5d270ed7a30969d5a70016cb393fda59a064f7934

    • SHA512

      b133dd34f0d682887d05fe1465be523de76e1c3ba72cd7d11266d7b001e8018643239ef64dc15f771b3e39cd9957e9502e8649089c113e3f1eb467b91d24b261

    • SSDEEP

      49152:qdJTnLF3wxROMZ/e6rrQBx1feqij/XG8IUWvZeB1iPt9yZ5R80qUvPhUm1b5ElhD:2R3at0Ug9C5R9v51EnZ8ynG

    Score
    7/10
    • Reads data files stored by FTP clients

      Tries to access configuration files associated with programs like FileZilla.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Accesses cryptocurrency files/wallets, possible credential harvesting

MITRE ATT&CK Enterprise v15

Tasks