General

  • Target

    02ae05adf3232282e69669ab7c9225af_JaffaCakes118

  • Size

    252KB

  • Sample

    240622-r18n7s1hrb

  • MD5

    02ae05adf3232282e69669ab7c9225af

  • SHA1

    c7e5cdbcf76df572d2d5b21cfa0159bc188e57b8

  • SHA256

    f679b93652af9fa665dddc18224cb64d8b392b5d2af6f49cde949602b8e0b4d7

  • SHA512

    d4e4e746f0dd10f802927308b82d5f1cb002c9d8d651659edf4f84726077837f2ad6b7b61d50f4434ec9e15a6c6c2acf6083816ce9afe4fc00489bbc712ba40f

  • SSDEEP

    6144:91OgDPdkBAFZWjadD4sqaNTlP4y6hsXgZ17qB:91OgLdaXghP4y6h7Q

Malware Config

Targets

    • Target

      02ae05adf3232282e69669ab7c9225af_JaffaCakes118

    • Size

      252KB

    • MD5

      02ae05adf3232282e69669ab7c9225af

    • SHA1

      c7e5cdbcf76df572d2d5b21cfa0159bc188e57b8

    • SHA256

      f679b93652af9fa665dddc18224cb64d8b392b5d2af6f49cde949602b8e0b4d7

    • SHA512

      d4e4e746f0dd10f802927308b82d5f1cb002c9d8d651659edf4f84726077837f2ad6b7b61d50f4434ec9e15a6c6c2acf6083816ce9afe4fc00489bbc712ba40f

    • SSDEEP

      6144:91OgDPdkBAFZWjadD4sqaNTlP4y6hsXgZ17qB:91OgLdaXghP4y6h7Q

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v15

Tasks