General

  • Target

    a4220eb09120b45cba6e2f53f13c94d4_JaffaCakes118

  • Size

    1.0MB

  • Sample

    240613-gwsgba1brn

  • MD5

    a4220eb09120b45cba6e2f53f13c94d4

  • SHA1

    2a9c1bde87fd3756e115697c47074348b9ce8767

  • SHA256

    55635931b6e733c5fbf8f116aca4208b33a425ae4d57dc1b50f226aca2f66549

  • SHA512

    b7d5c13b19ba341c77422f057a41ee1043bc5a698d3ab75f574df17a500112aa9c766828a68c95e86233e146dd68f7028edc8c1f61ca294a6bdcbd84db748901

  • SSDEEP

    24576:0UJazMIMuY+K/iUoCWCKV5WyyrnO7UcM7/pJrNJ2tjZMEP4LsZx:5SMIMkWi9C8WDztcM7P2tCEQLKx

Malware Config

Targets

    • Target

      a4220eb09120b45cba6e2f53f13c94d4_JaffaCakes118

    • Size

      1.0MB

    • MD5

      a4220eb09120b45cba6e2f53f13c94d4

    • SHA1

      2a9c1bde87fd3756e115697c47074348b9ce8767

    • SHA256

      55635931b6e733c5fbf8f116aca4208b33a425ae4d57dc1b50f226aca2f66549

    • SHA512

      b7d5c13b19ba341c77422f057a41ee1043bc5a698d3ab75f574df17a500112aa9c766828a68c95e86233e146dd68f7028edc8c1f61ca294a6bdcbd84db748901

    • SSDEEP

      24576:0UJazMIMuY+K/iUoCWCKV5WyyrnO7UcM7/pJrNJ2tjZMEP4LsZx:5SMIMkWi9C8WDztcM7P2tCEQLKx

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks