General
-
Target
0ffd28a2fca57acf11b0861aed26ff46_JaffaCakes118
-
Size
1018KB
-
Sample
240503-jctldaaa4s
-
MD5
0ffd28a2fca57acf11b0861aed26ff46
-
SHA1
e6fd5f4fb06a7b6ecc287a762e342f6e93707133
-
SHA256
04d026ac6c385b1e426095daa408fe406236220d12475e693f6e2ce91b229ec6
-
SHA512
b9cbe2a17e715a1405b4f2270aad7c2d95f8c3dbca8f66e91a3eaeb2fe1ae7e489870ec3f0ad6a318e80f017d70d913102e79aac42f980d4ab8df7d9949f9237
-
SSDEEP
12288:Y0BjVnA/XTX1LVQGPkEurwZu5x8/ks2UgUGl8DEUrgyHLEiPZDbRPOAjjAZV:hnITX1hQfJuu5x8/elO3gsHZJPfjjAZV
Malware Config
Targets
-
-
Target
0ffd28a2fca57acf11b0861aed26ff46_JaffaCakes118
-
Size
1018KB
-
MD5
0ffd28a2fca57acf11b0861aed26ff46
-
SHA1
e6fd5f4fb06a7b6ecc287a762e342f6e93707133
-
SHA256
04d026ac6c385b1e426095daa408fe406236220d12475e693f6e2ce91b229ec6
-
SHA512
b9cbe2a17e715a1405b4f2270aad7c2d95f8c3dbca8f66e91a3eaeb2fe1ae7e489870ec3f0ad6a318e80f017d70d913102e79aac42f980d4ab8df7d9949f9237
-
SSDEEP
12288:Y0BjVnA/XTX1LVQGPkEurwZu5x8/ks2UgUGl8DEUrgyHLEiPZDbRPOAjjAZV:hnITX1hQfJuu5x8/elO3gsHZJPfjjAZV
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-