General

  • Target

    97c230707c098541f1137306a9296cf4_JaffaCakes118

  • Size

    25.2MB

  • Sample

    240605-ljgw9sca7x

  • MD5

    97c230707c098541f1137306a9296cf4

  • SHA1

    36ba7d249c782c69ea2fab0adf3a2086dc4a8683

  • SHA256

    bf8eb1161864513478ccfd7de8d844b069c5fc9224cd063c41069fe44da9d7c9

  • SHA512

    7e9acc51971c38745ca952fea56390eb040f2314842abeb16e5893af1853b8218db4610f9e356f6c8a1e91fbb7b1a2e7a622940680ede3a650e95586b250c8cc

  • SSDEEP

    786432:CrKx3rzBSAx71x1ncsuQ2nttTdXTA9qACsgQwMb:przB9x71xVMQQ5XoqIgQw

Malware Config

Targets

    • Target

      97c230707c098541f1137306a9296cf4_JaffaCakes118

    • Size

      25.2MB

    • MD5

      97c230707c098541f1137306a9296cf4

    • SHA1

      36ba7d249c782c69ea2fab0adf3a2086dc4a8683

    • SHA256

      bf8eb1161864513478ccfd7de8d844b069c5fc9224cd063c41069fe44da9d7c9

    • SHA512

      7e9acc51971c38745ca952fea56390eb040f2314842abeb16e5893af1853b8218db4610f9e356f6c8a1e91fbb7b1a2e7a622940680ede3a650e95586b250c8cc

    • SSDEEP

      786432:CrKx3rzBSAx71x1ncsuQ2nttTdXTA9qACsgQwMb:przB9x71xVMQQ5XoqIgQw

    Score
    7/10
    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Legitimate hosting services abused for malware hosting/C2

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

MITRE ATT&CK Enterprise v15

Tasks