General
-
Target
0503caa1eafc2709ad2b51f3adf89643_JaffaCakes118
-
Size
482KB
-
Sample
240428-mt2vvsdh63
-
MD5
0503caa1eafc2709ad2b51f3adf89643
-
SHA1
a52412426dc734d9bc52a820ff61cfc5705d36b7
-
SHA256
24c6a5a0fce5f4ba60f2a4fc649aa27b51a0b3fe5e3f2048f75ba6fd3c5b6f29
-
SHA512
c8bbb11b4b13fe666eabe9b0e5593a05e11c0df39ec1770d7d2dc667ac726208fb6ccb5b659f2520460805689b7adbc4f9abc4f0feb0b0ecbc828a48a1fd0e14
-
SSDEEP
12288:9PIV9+AqRA3AEiRv4HqFGoobDOrsB3DowvoNdGHdFC:9bAqe3AaooX13Dmne4
Malware Config
Targets
-
-
Target
0503caa1eafc2709ad2b51f3adf89643_JaffaCakes118
-
Size
482KB
-
MD5
0503caa1eafc2709ad2b51f3adf89643
-
SHA1
a52412426dc734d9bc52a820ff61cfc5705d36b7
-
SHA256
24c6a5a0fce5f4ba60f2a4fc649aa27b51a0b3fe5e3f2048f75ba6fd3c5b6f29
-
SHA512
c8bbb11b4b13fe666eabe9b0e5593a05e11c0df39ec1770d7d2dc667ac726208fb6ccb5b659f2520460805689b7adbc4f9abc4f0feb0b0ecbc828a48a1fd0e14
-
SSDEEP
12288:9PIV9+AqRA3AEiRv4HqFGoobDOrsB3DowvoNdGHdFC:9bAqe3AaooX13Dmne4
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Drops startup file
-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Adds Run key to start application
-