General

  • Target

    e6074467d78bdfbd53ea96f659941992_JaffaCakes118

  • Size

    637KB

  • Sample

    240407-2payxagh95

  • MD5

    e6074467d78bdfbd53ea96f659941992

  • SHA1

    b5cc6af0f8b2624771b8a9afd65286b2217e4a88

  • SHA256

    2f0537394a9dffe75d4ee27608b2f6ced4e231f834b3b6f3bc11232e6013a9ec

  • SHA512

    235f00f4975a86a04e087344012bbd34d253a3555c82ad5bd3c9021a2884f98dd0ad538821517fdac7b66593a927c890051f757588ad27cd642001f47eda782a

  • SSDEEP

    12288:GhBs+1Dt0keMxURF24NT55rMAj/K0O9gtYt71nb5IMGIyBmzdg7:GA+1DtCZNNxMAj/KDatYRYIym67

Malware Config

Targets

    • Target

      e6074467d78bdfbd53ea96f659941992_JaffaCakes118

    • Size

      637KB

    • MD5

      e6074467d78bdfbd53ea96f659941992

    • SHA1

      b5cc6af0f8b2624771b8a9afd65286b2217e4a88

    • SHA256

      2f0537394a9dffe75d4ee27608b2f6ced4e231f834b3b6f3bc11232e6013a9ec

    • SHA512

      235f00f4975a86a04e087344012bbd34d253a3555c82ad5bd3c9021a2884f98dd0ad538821517fdac7b66593a927c890051f757588ad27cd642001f47eda782a

    • SSDEEP

      12288:GhBs+1Dt0keMxURF24NT55rMAj/K0O9gtYt71nb5IMGIyBmzdg7:GA+1DtCZNNxMAj/KDatYRYIym67

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks