General

  • Target

    e60ca817db6049c8dd7c473dea78d00c_JaffaCakes118

  • Size

    183KB

  • Sample

    240407-2w7w8aha3y

  • MD5

    e60ca817db6049c8dd7c473dea78d00c

  • SHA1

    75be7e77cf1a1627881c87210395125bcadb67a0

  • SHA256

    4ccff75d6f87fda4074cb03bbd8e61fcfd6a587ec89e1b626974bdeef96dbd53

  • SHA512

    8637ec847ada617625b61690a00fe97958b69ef1af9d09fe1baaf73ef9a48ab9c0300e177fc21203ca2b1c4e4d4d2407a78b1b99d86722594ea1b75467c4ec05

  • SSDEEP

    3072:Of3ZM5wD0eDxS7txhF7BiOk+5cOWAuEA7LNr3lsT6O8vaUO/NwbX850pMIWqojEW:wpM5MSJxhdBiOk+5cOvA7LR46O8v5Zit

Malware Config

Targets

    • Target

      e60ca817db6049c8dd7c473dea78d00c_JaffaCakes118

    • Size

      183KB

    • MD5

      e60ca817db6049c8dd7c473dea78d00c

    • SHA1

      75be7e77cf1a1627881c87210395125bcadb67a0

    • SHA256

      4ccff75d6f87fda4074cb03bbd8e61fcfd6a587ec89e1b626974bdeef96dbd53

    • SHA512

      8637ec847ada617625b61690a00fe97958b69ef1af9d09fe1baaf73ef9a48ab9c0300e177fc21203ca2b1c4e4d4d2407a78b1b99d86722594ea1b75467c4ec05

    • SSDEEP

      3072:Of3ZM5wD0eDxS7txhF7BiOk+5cOWAuEA7LNr3lsT6O8vaUO/NwbX850pMIWqojEW:wpM5MSJxhdBiOk+5cOvA7LR46O8v5Zit

    • Modifies WinLogon for persistence

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks