General
-
Target
8dbd73458721b5f6f19538924707a153_JaffaCakes118
-
Size
1.0MB
-
Sample
240602-mc7d1sah97
-
MD5
8dbd73458721b5f6f19538924707a153
-
SHA1
b41d0e0eb5f9bfb6dd93bfe044f3124a22a97adb
-
SHA256
11f4d60b4e4b9c511ffb7b1321a57cd9fb0939d94134bf84d317c18e5d893543
-
SHA512
bdbd0d556b72ef97eb083a5fb0ca9f5186f3eaf56daad611e42852437a756c55a34e9748424b979f348f8cca050ceabf0cb326f5ffd304889215c67ff8b7404d
-
SSDEEP
12288:DKnekrL58WC2MnyVtFiH0I1aQ2BMTwdAXstOEAG8CQtBK9kbhCpSmleOErcciYhJ:4Li3yV2fkdActOEF8FKaG1rptYDP1nD9
Malware Config
Targets
-
-
Target
8dbd73458721b5f6f19538924707a153_JaffaCakes118
-
Size
1.0MB
-
MD5
8dbd73458721b5f6f19538924707a153
-
SHA1
b41d0e0eb5f9bfb6dd93bfe044f3124a22a97adb
-
SHA256
11f4d60b4e4b9c511ffb7b1321a57cd9fb0939d94134bf84d317c18e5d893543
-
SHA512
bdbd0d556b72ef97eb083a5fb0ca9f5186f3eaf56daad611e42852437a756c55a34e9748424b979f348f8cca050ceabf0cb326f5ffd304889215c67ff8b7404d
-
SSDEEP
12288:DKnekrL58WC2MnyVtFiH0I1aQ2BMTwdAXstOEAG8CQtBK9kbhCpSmleOErcciYhJ:4Li3yV2fkdActOEF8FKaG1rptYDP1nD9
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-