General
-
Target
41ec99568224cb884af62c8847189d04_JaffaCakes118
-
Size
716KB
-
Sample
240514-sd4meabg5z
-
MD5
41ec99568224cb884af62c8847189d04
-
SHA1
f5a88cabf8cd9ebbe30d85addc00a2f572aebea1
-
SHA256
20430909b0e7b429a18f9821b40ef0526cef479815b108c9f9d833739eb611e0
-
SHA512
fca1aa71ab248f47e5e445c8a310710cfd2f52c063aa2a4e2194b74fac80a858dd8e489bdf195e8af5cba0c3cab4059d3236d4626c25b8a13d8682fd2bf9c1a0
-
SSDEEP
12288:2KnekrL58zLDignOKDLXskCWAuSS/Kfz1RVJyZq0Py8B9/iW229e4N1Si12w:fLizLDvfn2W/SxBRryfNb/iW2MN19v
Malware Config
Targets
-
-
Target
41ec99568224cb884af62c8847189d04_JaffaCakes118
-
Size
716KB
-
MD5
41ec99568224cb884af62c8847189d04
-
SHA1
f5a88cabf8cd9ebbe30d85addc00a2f572aebea1
-
SHA256
20430909b0e7b429a18f9821b40ef0526cef479815b108c9f9d833739eb611e0
-
SHA512
fca1aa71ab248f47e5e445c8a310710cfd2f52c063aa2a4e2194b74fac80a858dd8e489bdf195e8af5cba0c3cab4059d3236d4626c25b8a13d8682fd2bf9c1a0
-
SSDEEP
12288:2KnekrL58zLDignOKDLXskCWAuSS/Kfz1RVJyZq0Py8B9/iW229e4N1Si12w:fLizLDvfn2W/SxBRryfNb/iW2MN19v
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-