General

  • Target

    a3ee25e31b3b2f8d5ee5ae5922a9cbd7_JaffaCakes118

  • Size

    1.0MB

  • Sample

    240613-fv7zyayglm

  • MD5

    a3ee25e31b3b2f8d5ee5ae5922a9cbd7

  • SHA1

    a7b427d6870af217138aa8ebe0f90d13be36f20e

  • SHA256

    38b3aef879b86d7486227e076d97501ae9529e53ea3bf85661cd0f719c75de95

  • SHA512

    40191f410ec5b85c26ffcbd9bc868fefcb70041c4554dd89c8250ec85060bf857d097e8c69644e45f72520f61b7c37b7a8d7d95eb914a6ab5f6f8a83e70ba510

  • SSDEEP

    24576:/62vSQ/ICC+g8ems8+AQ8BPQ/Fj1fXFJ6TUSEqWJNPTDyTx2v7qpss43:/kQ/IUg8emgA5G/7VJsOdiY7ms5

Malware Config

Targets

    • Target

      a3ee25e31b3b2f8d5ee5ae5922a9cbd7_JaffaCakes118

    • Size

      1.0MB

    • MD5

      a3ee25e31b3b2f8d5ee5ae5922a9cbd7

    • SHA1

      a7b427d6870af217138aa8ebe0f90d13be36f20e

    • SHA256

      38b3aef879b86d7486227e076d97501ae9529e53ea3bf85661cd0f719c75de95

    • SHA512

      40191f410ec5b85c26ffcbd9bc868fefcb70041c4554dd89c8250ec85060bf857d097e8c69644e45f72520f61b7c37b7a8d7d95eb914a6ab5f6f8a83e70ba510

    • SSDEEP

      24576:/62vSQ/ICC+g8ems8+AQ8BPQ/Fj1fXFJ6TUSEqWJNPTDyTx2v7qpss43:/kQ/IUg8emgA5G/7VJsOdiY7ms5

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks