General

  • Target

    e57024a5cb2053db8f31d62380714bc4_JaffaCakes118

  • Size

    1.9MB

  • Sample

    240407-vprhbshe5v

  • MD5

    e57024a5cb2053db8f31d62380714bc4

  • SHA1

    3c7bd40f74b94ec3a0b35040259146fb411921bd

  • SHA256

    c3c180c20d40cbdb9402ac0616719ccdac01268776058e16883d5acd0784ad64

  • SHA512

    8cd19690529b55630dc9aed1e6d454cefb997db8556d55c4c0e8a0b1558a187580e60eaa21352451da5c2f93468c5aef32f251030cf23c4c11c02786a361f53d

  • SSDEEP

    49152:H//wYu8Ot/U2nPlZReONR/gBhkN5p3NArPhvYVTys1YCd6/k:f/wVZhDdZbRYo+jhAF1YCd6/

Score
7/10

Malware Config

Targets

    • Target

      e57024a5cb2053db8f31d62380714bc4_JaffaCakes118

    • Size

      1.9MB

    • MD5

      e57024a5cb2053db8f31d62380714bc4

    • SHA1

      3c7bd40f74b94ec3a0b35040259146fb411921bd

    • SHA256

      c3c180c20d40cbdb9402ac0616719ccdac01268776058e16883d5acd0784ad64

    • SHA512

      8cd19690529b55630dc9aed1e6d454cefb997db8556d55c4c0e8a0b1558a187580e60eaa21352451da5c2f93468c5aef32f251030cf23c4c11c02786a361f53d

    • SSDEEP

      49152:H//wYu8Ot/U2nPlZReONR/gBhkN5p3NArPhvYVTys1YCd6/k:f/wVZhDdZbRYo+jhAF1YCd6/

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks