General

  • Target

    04a8c369d46c69f869b9f0db22fffc42_JaffaCakes118

  • Size

    313KB

  • Sample

    240620-k91lmazcnb

  • MD5

    04a8c369d46c69f869b9f0db22fffc42

  • SHA1

    0c06f9c871b56299482b2b4b76433b0c9c968261

  • SHA256

    f3a053ef346f5b5273496cd49366133390b2a8d85c0b3e11ceb94cd24c08af1b

  • SHA512

    4c37b9be005c89400518f2958ba2dcc1f6079d5985c934d7411da79504233fb21b68e3f8a099f01c255d0461e41d1ec8116bc2475678f4ce751ab4b89a6d27bd

  • SSDEEP

    6144:91OgDPdkBAFZWjadD4spcvEYZJlGE9VEgBWPEdGV:91OgLda3VJ0ghdS

Malware Config

Targets

    • Target

      04a8c369d46c69f869b9f0db22fffc42_JaffaCakes118

    • Size

      313KB

    • MD5

      04a8c369d46c69f869b9f0db22fffc42

    • SHA1

      0c06f9c871b56299482b2b4b76433b0c9c968261

    • SHA256

      f3a053ef346f5b5273496cd49366133390b2a8d85c0b3e11ceb94cd24c08af1b

    • SHA512

      4c37b9be005c89400518f2958ba2dcc1f6079d5985c934d7411da79504233fb21b68e3f8a099f01c255d0461e41d1ec8116bc2475678f4ce751ab4b89a6d27bd

    • SSDEEP

      6144:91OgDPdkBAFZWjadD4spcvEYZJlGE9VEgBWPEdGV:91OgLda3VJ0ghdS

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v15

Tasks