General

  • Target

    e75fc0bd956659e41bd13604b22e1f19_JaffaCakes118

  • Size

    1.6MB

  • Sample

    240408-nrl73agb68

  • MD5

    e75fc0bd956659e41bd13604b22e1f19

  • SHA1

    08a4a4e22e72ee6ba0212105521a2ccbc912fbc8

  • SHA256

    dc93b24dc646d4e7d83e48d0e6ba801e91c720aac649e04e530d477c95a35758

  • SHA512

    7c3ef5276bf61d39910d74ebde1624abde4c5465ceb91b8a52aeb2a9ed8f6258561e1b8ff61b8b382b8d3e8efa81d7ff11f0a56b9f1784b99510674c31a05f8b

  • SSDEEP

    49152:jKfmJ9vFnsx/65N0rY3jMVwqZi/Tn/Yrl:jLL9jzMVwrA

Malware Config

Targets

    • Target

      e75fc0bd956659e41bd13604b22e1f19_JaffaCakes118

    • Size

      1.6MB

    • MD5

      e75fc0bd956659e41bd13604b22e1f19

    • SHA1

      08a4a4e22e72ee6ba0212105521a2ccbc912fbc8

    • SHA256

      dc93b24dc646d4e7d83e48d0e6ba801e91c720aac649e04e530d477c95a35758

    • SHA512

      7c3ef5276bf61d39910d74ebde1624abde4c5465ceb91b8a52aeb2a9ed8f6258561e1b8ff61b8b382b8d3e8efa81d7ff11f0a56b9f1784b99510674c31a05f8b

    • SSDEEP

      49152:jKfmJ9vFnsx/65N0rY3jMVwqZi/Tn/Yrl:jLL9jzMVwrA

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks whether UAC is enabled

MITRE ATT&CK Enterprise v15

Tasks