General

  • Target

    e57f0cd3c8f1352655be87f38cab00d3_JaffaCakes118

  • Size

    288KB

  • Sample

    240407-v9b85saa8x

  • MD5

    e57f0cd3c8f1352655be87f38cab00d3

  • SHA1

    66ae65a285a6f143bcfb01ae3cf1584c01337394

  • SHA256

    c9eaccae2257767406c3ebb3eb4a6aef5beba15bd2fc1e1add6d166b35648121

  • SHA512

    2769148483b38575c42e5622214d525431a537db40fb20d0c279eddab4af7e7c14702956b718b892aac1fa628afaf9590d82ac2320e88c0478a88bbf07d23db6

  • SSDEEP

    6144:o3qTjEpmi57KaeTaweZbmlehYGW3r7tIQiU8ca8VPIpqvYETQ:CqjNiLeb94WFI/hquqvY2Q

Score
7/10

Malware Config

Targets

    • Target

      e57f0cd3c8f1352655be87f38cab00d3_JaffaCakes118

    • Size

      288KB

    • MD5

      e57f0cd3c8f1352655be87f38cab00d3

    • SHA1

      66ae65a285a6f143bcfb01ae3cf1584c01337394

    • SHA256

      c9eaccae2257767406c3ebb3eb4a6aef5beba15bd2fc1e1add6d166b35648121

    • SHA512

      2769148483b38575c42e5622214d525431a537db40fb20d0c279eddab4af7e7c14702956b718b892aac1fa628afaf9590d82ac2320e88c0478a88bbf07d23db6

    • SSDEEP

      6144:o3qTjEpmi57KaeTaweZbmlehYGW3r7tIQiU8ca8VPIpqvYETQ:CqjNiLeb94WFI/hquqvY2Q

    Score
    7/10
    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Legitimate hosting services abused for malware hosting/C2

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Enterprise v15

Tasks