General
-
Target
2f3a6056c48203a1750d8b34c55f0055_JaffaCakes118
-
Size
177KB
-
Sample
240709-gqde7syhkm
-
MD5
2f3a6056c48203a1750d8b34c55f0055
-
SHA1
c0da2e19b6cb5904d81a94babfbbe85687e09d81
-
SHA256
1aabe4b0564aee2a7217827d856ed33891ba2e959a9241511b00786722dad294
-
SHA512
34b492b974ffe03ed2d0caa41051858ebe0a74e567be55e36cdc8dc80ca972e5df87ce3a4d4891b3e8f38e07937191ad4c70ba553e46e3eec5706056ce380644
-
SSDEEP
3072:Mch+Brm2fU37jwKnkSM63PYwjI9gVgfYr5ApBQoh7v635OsVQD6TgGKTeO:1h+dmKU3XnkSM63ECJrTJJOvD6MPTeO
Malware Config
Targets
-
-
Target
2f3a6056c48203a1750d8b34c55f0055_JaffaCakes118
-
Size
177KB
-
MD5
2f3a6056c48203a1750d8b34c55f0055
-
SHA1
c0da2e19b6cb5904d81a94babfbbe85687e09d81
-
SHA256
1aabe4b0564aee2a7217827d856ed33891ba2e959a9241511b00786722dad294
-
SHA512
34b492b974ffe03ed2d0caa41051858ebe0a74e567be55e36cdc8dc80ca972e5df87ce3a4d4891b3e8f38e07937191ad4c70ba553e46e3eec5706056ce380644
-
SSDEEP
3072:Mch+Brm2fU37jwKnkSM63PYwjI9gVgfYr5ApBQoh7v635OsVQD6TgGKTeO:1h+dmKU3XnkSM63ECJrTJJOvD6MPTeO
Score10/10-
Modifies WinLogon for persistence
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-