General

  • Target

    11e5810c5c7354562595a4733c08e194_JaffaCakes118

  • Size

    6.6MB

  • Sample

    240626-nyrfcstcje

  • MD5

    11e5810c5c7354562595a4733c08e194

  • SHA1

    51782aa579ae86046e5606b7bb0c34351f5257e6

  • SHA256

    68d3c2a257823adc53f35a09ec359befa3738ed61cf9ca771c7f9bcbfd2d9b7f

  • SHA512

    02a29dd1235108cdd887173478e265110012a734978bfe64a7089bf1fba985ba51352e50ed2ed86b7f0801344d0449f0c16c69504c5f4ecd7d3ca9ce15193b57

  • SSDEEP

    196608:rU+gp1DM9onJ5hrZER9xQ3jo4Uj7+9glRHntF:4pNM9c5hlER9xA2jS9ARHn

Malware Config

Targets

    • Target

      11e5810c5c7354562595a4733c08e194_JaffaCakes118

    • Size

      6.6MB

    • MD5

      11e5810c5c7354562595a4733c08e194

    • SHA1

      51782aa579ae86046e5606b7bb0c34351f5257e6

    • SHA256

      68d3c2a257823adc53f35a09ec359befa3738ed61cf9ca771c7f9bcbfd2d9b7f

    • SHA512

      02a29dd1235108cdd887173478e265110012a734978bfe64a7089bf1fba985ba51352e50ed2ed86b7f0801344d0449f0c16c69504c5f4ecd7d3ca9ce15193b57

    • SSDEEP

      196608:rU+gp1DM9onJ5hrZER9xQ3jo4Uj7+9glRHntF:4pNM9c5hlER9xA2jS9ARHn

    Score
    7/10
    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v15

Tasks