General

  • Target

    027915753d04325f2fd57362443aa4e8_JaffaCakes118

  • Size

    309KB

  • Sample

    240620-d7atvs1dnp

  • MD5

    027915753d04325f2fd57362443aa4e8

  • SHA1

    505228a3743fee06c1bd7a2129da093f58b77b11

  • SHA256

    dadfffc51769ca47b7804f794db2675de84e754d08da093b506343760c548633

  • SHA512

    3442b6fb8af8bdbf76185c5a2345ec3b6ded337b0ca7d76bbfed8224bc302d4379c8ea65ce84ec482bd63238720b07f7befc1ab4a3b0c15be01bb636a8cb8665

  • SSDEEP

    6144:91OgDPdkBAFZWjadD4swFQymqIjqwnes/EaAOBEqaQP+e01PfJF:91OgLdagjFnREsEFu+eIfJF

Malware Config

Targets

    • Target

      027915753d04325f2fd57362443aa4e8_JaffaCakes118

    • Size

      309KB

    • MD5

      027915753d04325f2fd57362443aa4e8

    • SHA1

      505228a3743fee06c1bd7a2129da093f58b77b11

    • SHA256

      dadfffc51769ca47b7804f794db2675de84e754d08da093b506343760c548633

    • SHA512

      3442b6fb8af8bdbf76185c5a2345ec3b6ded337b0ca7d76bbfed8224bc302d4379c8ea65ce84ec482bd63238720b07f7befc1ab4a3b0c15be01bb636a8cb8665

    • SSDEEP

      6144:91OgDPdkBAFZWjadD4swFQymqIjqwnes/EaAOBEqaQP+e01PfJF:91OgLdagjFnREsEFu+eIfJF

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v15

Tasks