General

  • Target

    e60f966fdfe8bad85efc44876c9517df_JaffaCakes118

  • Size

    40KB

  • Sample

    240407-21zreahb7w

  • MD5

    e60f966fdfe8bad85efc44876c9517df

  • SHA1

    88032528770a299d936762da632052adea705393

  • SHA256

    ec43eb9d66a1c891a7a32eb5610b23cd1e04cf41e2621c6497379c2d1c96310b

  • SHA512

    5be10b9595f3fb19dbed1ba5fea3c9d147cc0ba4dc55d613d054b336d0bfeecac492cd9933f76bab197120c84173fa8abbfdfdd05316783b7b7b601c14a41bca

  • SSDEEP

    768:orY0THZVdBsAs2H1FuIDKdLtZ1UKnU83YjtxW34:lCZVgAs6oQKdLtTUut36tA34

Malware Config

Targets

    • Target

      e60f966fdfe8bad85efc44876c9517df_JaffaCakes118

    • Size

      40KB

    • MD5

      e60f966fdfe8bad85efc44876c9517df

    • SHA1

      88032528770a299d936762da632052adea705393

    • SHA256

      ec43eb9d66a1c891a7a32eb5610b23cd1e04cf41e2621c6497379c2d1c96310b

    • SHA512

      5be10b9595f3fb19dbed1ba5fea3c9d147cc0ba4dc55d613d054b336d0bfeecac492cd9933f76bab197120c84173fa8abbfdfdd05316783b7b7b601c14a41bca

    • SSDEEP

      768:orY0THZVdBsAs2H1FuIDKdLtZ1UKnU83YjtxW34:lCZVgAs6oQKdLtTUut36tA34

    • Modifies firewall policy service

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks