General
-
Target
0db52999b81d0d0392052ad8722659f4_JaffaCakes118
-
Size
2.1MB
-
Sample
240625-mdhr2stfna
-
MD5
0db52999b81d0d0392052ad8722659f4
-
SHA1
831723db2247e5abfbebf3af1a6b6e19242a75e0
-
SHA256
a2b1250743f6f84097ae9e9ffb0d4044a05a210fa678ac726228592ac3344337
-
SHA512
c2638903cc4a71e185983574adfe507be8e29988e1c4170c176bf76e03db3686c9aab2eaaa154e89943a80cfdff58ff4fcfdd8f7ecd478fafcb25c3ca6485027
-
SSDEEP
24576:/TnQqmTMrRoNk7BZpUw/rGmSI8LUlFl5Fp+:/TnQqCMrRokpVhcY/+
Malware Config
Targets
-
-
Target
0db52999b81d0d0392052ad8722659f4_JaffaCakes118
-
Size
2.1MB
-
MD5
0db52999b81d0d0392052ad8722659f4
-
SHA1
831723db2247e5abfbebf3af1a6b6e19242a75e0
-
SHA256
a2b1250743f6f84097ae9e9ffb0d4044a05a210fa678ac726228592ac3344337
-
SHA512
c2638903cc4a71e185983574adfe507be8e29988e1c4170c176bf76e03db3686c9aab2eaaa154e89943a80cfdff58ff4fcfdd8f7ecd478fafcb25c3ca6485027
-
SSDEEP
24576:/TnQqmTMrRoNk7BZpUw/rGmSI8LUlFl5Fp+:/TnQqCMrRokpVhcY/+
Score7/10-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Adds Run key to start application
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-
Drops file in System32 directory
-