General

  • Target

    0d2b8b801bbde449a802b5f28dfb45a7_JaffaCakes118

  • Size

    7.9MB

  • Sample

    240502-ceagysga65

  • MD5

    0d2b8b801bbde449a802b5f28dfb45a7

  • SHA1

    67b0d2d3071e148acdad9f278858f16d258775e8

  • SHA256

    69c28a6df9bcf6c06c982149efc4aefab79ee030157664f3da77f1dc1082d0a4

  • SHA512

    897be616aac18ad9eab7af4b22181802da5a485932506bf416f13010fa9f2e3055cd0d6d1778c437b7832fff5db71f2e2b1128eb713009aa5b0b5245f9361d4d

  • SSDEEP

    49152:cNOMz3w0skAhMeFE889fgp6Jld6gv7tGoHVh:cNOMzrFET+5ip6JlUgv7F1h

Malware Config

Targets

    • Target

      0d2b8b801bbde449a802b5f28dfb45a7_JaffaCakes118

    • Size

      7.9MB

    • MD5

      0d2b8b801bbde449a802b5f28dfb45a7

    • SHA1

      67b0d2d3071e148acdad9f278858f16d258775e8

    • SHA256

      69c28a6df9bcf6c06c982149efc4aefab79ee030157664f3da77f1dc1082d0a4

    • SHA512

      897be616aac18ad9eab7af4b22181802da5a485932506bf416f13010fa9f2e3055cd0d6d1778c437b7832fff5db71f2e2b1128eb713009aa5b0b5245f9361d4d

    • SSDEEP

      49152:cNOMz3w0skAhMeFE889fgp6Jld6gv7tGoHVh:cNOMzrFET+5ip6JlUgv7F1h

    • Executes dropped EXE

    • Loads dropped DLL

    • Modifies system executable filetype association

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks