General
-
Target
d7ed4cfa850622ed71171ddec552ed6c_JaffaCakes118
-
Size
880KB
-
Sample
240405-s7whwsge49
-
MD5
d7ed4cfa850622ed71171ddec552ed6c
-
SHA1
8b0a8f4268444c2a8c2807a668ba28eb955d8d11
-
SHA256
c55472156a4049406afc1b44bbe5b6b6899a83a3e6fbb5fd9d14d85886c7c2aa
-
SHA512
e146606f41ff87a14df0084b9fef476c187be5fe184319610ecf10d427f1b6afacb310a43e1e87d26f2e52141c51efea18cca634e6a91bb739ccbe268d8a74aa
-
SSDEEP
12288:Bdcd8jFKGUJmQCyCs/RGbkhuVRDa3fXE6Rc4q2l/edmZfOE7xxLML9u7BAlIrbqR:BdtjFKDVCs5NMVzMJnq/
Malware Config
Targets
-
-
Target
d7ed4cfa850622ed71171ddec552ed6c_JaffaCakes118
-
Size
880KB
-
MD5
d7ed4cfa850622ed71171ddec552ed6c
-
SHA1
8b0a8f4268444c2a8c2807a668ba28eb955d8d11
-
SHA256
c55472156a4049406afc1b44bbe5b6b6899a83a3e6fbb5fd9d14d85886c7c2aa
-
SHA512
e146606f41ff87a14df0084b9fef476c187be5fe184319610ecf10d427f1b6afacb310a43e1e87d26f2e52141c51efea18cca634e6a91bb739ccbe268d8a74aa
-
SSDEEP
12288:Bdcd8jFKGUJmQCyCs/RGbkhuVRDa3fXE6Rc4q2l/edmZfOE7xxLML9u7BAlIrbqR:BdtjFKDVCs5NMVzMJnq/
Score10/10-
44Caliber
An open source infostealer written in C#.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-