General

  • Target

    a3b1446fd4500f7460180df5cb6f11b6_JaffaCakes118

  • Size

    64KB

  • Sample

    240403-xesnrahd3y

  • MD5

    a3b1446fd4500f7460180df5cb6f11b6

  • SHA1

    1844eda1ba9e31a1a7b240b6b57953780aa3f182

  • SHA256

    0af60ba74492baa301258fb783bdd28b2b9b0594985f0eefd2aea353082bd18c

  • SHA512

    8bcd1d4e6a9e425d83f42e251b6cd9a84548dbf6b9d3a7e52890c6bb6c9d69482b0d39f79041b6beaffc1656b90043e4478a6923bd7726863b66c3dd457d3c3a

  • SSDEEP

    1536:BAayJc/J4gaLMtIlYPnQR8P5UTfl1fMO7WHNfWUX:BAayE40IqB5ULl1fMO7WFWUX

Malware Config

Targets

    • Target

      a3b1446fd4500f7460180df5cb6f11b6_JaffaCakes118

    • Size

      64KB

    • MD5

      a3b1446fd4500f7460180df5cb6f11b6

    • SHA1

      1844eda1ba9e31a1a7b240b6b57953780aa3f182

    • SHA256

      0af60ba74492baa301258fb783bdd28b2b9b0594985f0eefd2aea353082bd18c

    • SHA512

      8bcd1d4e6a9e425d83f42e251b6cd9a84548dbf6b9d3a7e52890c6bb6c9d69482b0d39f79041b6beaffc1656b90043e4478a6923bd7726863b66c3dd457d3c3a

    • SSDEEP

      1536:BAayJc/J4gaLMtIlYPnQR8P5UTfl1fMO7WHNfWUX:BAayE40IqB5ULl1fMO7WFWUX

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks