General

  • Target

    e5bc336d5b167e228a26db807d9cf966_JaffaCakes118

  • Size

    1.6MB

  • Sample

    240407-ynrcqadd29

  • MD5

    e5bc336d5b167e228a26db807d9cf966

  • SHA1

    949c073fd60ff6a226083c5a6cc10f0a7bf5a192

  • SHA256

    ed23ac10b6f0076beb4e32dbecf2823c464382bda0659c94bbb1d9ef7b5185cc

  • SHA512

    6c05ada48158d79306459be4877cf6599e8992f06fa43fff668aeb4517e67466910d7296e356db0f4bf8753ccd20b43360a99198608b30b0a7afd8bcacf345c9

  • SSDEEP

    49152:k/fwhofLeH4si17tnyKl6ZAZ5a0mLTqOrX:kwhweHxiUMaxD

Malware Config

Targets

    • Target

      e5bc336d5b167e228a26db807d9cf966_JaffaCakes118

    • Size

      1.6MB

    • MD5

      e5bc336d5b167e228a26db807d9cf966

    • SHA1

      949c073fd60ff6a226083c5a6cc10f0a7bf5a192

    • SHA256

      ed23ac10b6f0076beb4e32dbecf2823c464382bda0659c94bbb1d9ef7b5185cc

    • SHA512

      6c05ada48158d79306459be4877cf6599e8992f06fa43fff668aeb4517e67466910d7296e356db0f4bf8753ccd20b43360a99198608b30b0a7afd8bcacf345c9

    • SSDEEP

      49152:k/fwhofLeH4si17tnyKl6ZAZ5a0mLTqOrX:kwhweHxiUMaxD

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks whether UAC is enabled

MITRE ATT&CK Enterprise v15

Tasks