General
-
Target
86d0b1619389b49e9d11afc5da024757_JaffaCakes118
-
Size
717KB
-
Sample
240531-ne6qyaff2x
-
MD5
86d0b1619389b49e9d11afc5da024757
-
SHA1
d64bfff5a5fa59fb585dd81662c1b31d2de28650
-
SHA256
217435ce92c05979f672b3bc837189e0c1b992f83eca81d9f9544ec16921369c
-
SHA512
09bca5696df73739524c1893d05bac9ea6f61f4fddc99d734ee78ee688158be1310252514d7c7ee2b4620d079aaa4679f811a384b0315c9aabf20f610be92790
-
SSDEEP
12288:BKnekrL58Sv4JePOx+miEqvF+o4TimEwwMhGKSlw28nv23y1lDYuRrDPDcyRqBAM:OLiAb2Z4+o4+5dKSl+kC9YOPPFRqXnDh
Malware Config
Targets
-
-
Target
86d0b1619389b49e9d11afc5da024757_JaffaCakes118
-
Size
717KB
-
MD5
86d0b1619389b49e9d11afc5da024757
-
SHA1
d64bfff5a5fa59fb585dd81662c1b31d2de28650
-
SHA256
217435ce92c05979f672b3bc837189e0c1b992f83eca81d9f9544ec16921369c
-
SHA512
09bca5696df73739524c1893d05bac9ea6f61f4fddc99d734ee78ee688158be1310252514d7c7ee2b4620d079aaa4679f811a384b0315c9aabf20f610be92790
-
SSDEEP
12288:BKnekrL58Sv4JePOx+miEqvF+o4TimEwwMhGKSlw28nv23y1lDYuRrDPDcyRqBAM:OLiAb2Z4+o4+5dKSl+kC9YOPPFRqXnDh
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-