General

  • Target

    895b93515b3798e4567e50fda270ae04_JaffaCakes118

  • Size

    1.5MB

  • Sample

    240601-e14zssad58

  • MD5

    895b93515b3798e4567e50fda270ae04

  • SHA1

    28b0472a6581c9a9a9c3ab0e9f58fa715fd8c88c

  • SHA256

    524233df22b5be7d949d962ee13011113d24978ff6ca5ca6dcc05cfa2fa8f75c

  • SHA512

    b47ebcad9ac4b13935fb7b0d4bea0f88533e9dce74d3ea3e6acb8b97c312b18cbbc5be54fc3fdd85ef113ec4e71ca90c09f0e2dace5b63b05e5da7a4b27f20d7

  • SSDEEP

    24576:c5f6MGJ5uwKRRDa9DJoYHztD91O5tUNOWS0WrDQUl/EZNCRKvvgU1BCTrrTTTNZy:mDO9DLfIDLZQu8ZNLYU1BUTTJ340IL

Malware Config

Targets

    • Target

      895b93515b3798e4567e50fda270ae04_JaffaCakes118

    • Size

      1.5MB

    • MD5

      895b93515b3798e4567e50fda270ae04

    • SHA1

      28b0472a6581c9a9a9c3ab0e9f58fa715fd8c88c

    • SHA256

      524233df22b5be7d949d962ee13011113d24978ff6ca5ca6dcc05cfa2fa8f75c

    • SHA512

      b47ebcad9ac4b13935fb7b0d4bea0f88533e9dce74d3ea3e6acb8b97c312b18cbbc5be54fc3fdd85ef113ec4e71ca90c09f0e2dace5b63b05e5da7a4b27f20d7

    • SSDEEP

      24576:c5f6MGJ5uwKRRDa9DJoYHztD91O5tUNOWS0WrDQUl/EZNCRKvvgU1BCTrrTTTNZy:mDO9DLfIDLZQu8ZNLYU1BUTTJ340IL

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks whether UAC is enabled

MITRE ATT&CK Enterprise v15

Tasks