General

  • Target

    e5519769427efdc43b39ee97fbd859e9_JaffaCakes118

  • Size

    29KB

  • Sample

    240407-tkh5qagc6y

  • MD5

    e5519769427efdc43b39ee97fbd859e9

  • SHA1

    bbf16338a08bfe2a2b79a77b21d6b4cae478c37c

  • SHA256

    01d64248047b798b67a514ffef9a1ab729d6ce463d53d26a59e74f58160d5ad9

  • SHA512

    c232f2f1113eccb172c125c55c639103702202ba1ca90906d6923dfae8fb2b89647cb2fa6bdf0061b3fddcddb45bbf371a8250ddb4af53edb74696db94686dc4

  • SSDEEP

    768:XocAX3LKew369lp2z3Sd4baFXLjwP/Tgj93b8NIocVSEF6R:SKcR4mjD9r823F6R

Malware Config

Targets

    • Target

      e5519769427efdc43b39ee97fbd859e9_JaffaCakes118

    • Size

      29KB

    • MD5

      e5519769427efdc43b39ee97fbd859e9

    • SHA1

      bbf16338a08bfe2a2b79a77b21d6b4cae478c37c

    • SHA256

      01d64248047b798b67a514ffef9a1ab729d6ce463d53d26a59e74f58160d5ad9

    • SHA512

      c232f2f1113eccb172c125c55c639103702202ba1ca90906d6923dfae8fb2b89647cb2fa6bdf0061b3fddcddb45bbf371a8250ddb4af53edb74696db94686dc4

    • SSDEEP

      768:XocAX3LKew369lp2z3Sd4baFXLjwP/Tgj93b8NIocVSEF6R:SKcR4mjD9r823F6R

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks