General

  • Target

    a5e253bea590628a79f279952d774138_JaffaCakes118

  • Size

    693KB

  • Sample

    240613-q611wawbkl

  • MD5

    a5e253bea590628a79f279952d774138

  • SHA1

    e40b940365f3705e3c2452532b76fe65f4d44dcf

  • SHA256

    559d87ca5367eac152b1a179e44de6dd1e07b8dbaeaaf9cd3823e5601a0381d1

  • SHA512

    b1d154293ca465c8ea54e9678c2112eb34c1971290fd7ae16c75122d20dd76d726645044c10367c081040012d1ca1ca5341bda70f84624a24892483091a7bc31

  • SSDEEP

    12288:z7Fwz98Il2ZOB5OzFN0g/oLVrtpfxmL+y+lz/3fHzKfjldn2JSm+aFmD:z7FwoZOLO70K8ZtOCyA/ch2AZaFmD

Malware Config

Targets

    • Target

      a5e253bea590628a79f279952d774138_JaffaCakes118

    • Size

      693KB

    • MD5

      a5e253bea590628a79f279952d774138

    • SHA1

      e40b940365f3705e3c2452532b76fe65f4d44dcf

    • SHA256

      559d87ca5367eac152b1a179e44de6dd1e07b8dbaeaaf9cd3823e5601a0381d1

    • SHA512

      b1d154293ca465c8ea54e9678c2112eb34c1971290fd7ae16c75122d20dd76d726645044c10367c081040012d1ca1ca5341bda70f84624a24892483091a7bc31

    • SSDEEP

      12288:z7Fwz98Il2ZOB5OzFN0g/oLVrtpfxmL+y+lz/3fHzKfjldn2JSm+aFmD:z7FwoZOLO70K8ZtOCyA/ch2AZaFmD

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Drops Chrome extension

MITRE ATT&CK Enterprise v15

Tasks