General

  • Target

    e581bfcecf4d04572cd73e03ca03e8a9_JaffaCakes118

  • Size

    843KB

  • Sample

    240407-wdyypsae48

  • MD5

    e581bfcecf4d04572cd73e03ca03e8a9

  • SHA1

    3ddd4e10d82d44d4253709ac68c2826d1520b62e

  • SHA256

    24dab264063bfd98dfd0f1dee3f570fb7fd2b8b075bbaf32d83a0189fc47f9f3

  • SHA512

    a52141d303d186fe85a0d8b07bbb5e3130d50225108a8998ca4ca31c7e972131bde342e3b9a5e8aeca1d294b1d453c65586f3d000c08ae5e67080738760eaee3

  • SSDEEP

    24576:3KJGaqvWGvcApzH3mosvteGHmxenhcuiLBmStM8DlAnOi:3AGaqvhEEjQvtemkOWuYC8Dent

Malware Config

Targets

    • Target

      e581bfcecf4d04572cd73e03ca03e8a9_JaffaCakes118

    • Size

      843KB

    • MD5

      e581bfcecf4d04572cd73e03ca03e8a9

    • SHA1

      3ddd4e10d82d44d4253709ac68c2826d1520b62e

    • SHA256

      24dab264063bfd98dfd0f1dee3f570fb7fd2b8b075bbaf32d83a0189fc47f9f3

    • SHA512

      a52141d303d186fe85a0d8b07bbb5e3130d50225108a8998ca4ca31c7e972131bde342e3b9a5e8aeca1d294b1d453c65586f3d000c08ae5e67080738760eaee3

    • SSDEEP

      24576:3KJGaqvWGvcApzH3mosvteGHmxenhcuiLBmStM8DlAnOi:3AGaqvhEEjQvtemkOWuYC8Dent

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Drops Chrome extension

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks