General
-
Target
468b4ae73eaa9c1445bf069653d6c45b_JaffaCakes118
-
Size
184KB
-
Sample
240714-tkegjazdjf
-
MD5
468b4ae73eaa9c1445bf069653d6c45b
-
SHA1
918b5fede56f46341c5b70c544923e04adfa4e8e
-
SHA256
3352bdefbcbfd8025f71a52af3ba998a4cd18099e9e1f36168f35675396658a8
-
SHA512
4cc09d47895cb75c1f1a6ea1e5ed4ddbf849bc76c85146fb6852ff3550aa51cc2ec0e2f238b5fb0a1552384220e3f5af297f0eaf3febf26b1389eccc18c89638
-
SSDEEP
3072:Uh0mye7+v172dGubHrLgHGR8pqz+g4W/ovIZwniCn6Lr7amAX/hboqo8NFspnJzn:Kye7U172d1iGvqg4WQwZwniyQ7ZAX/hA
Malware Config
Targets
-
-
Target
468b4ae73eaa9c1445bf069653d6c45b_JaffaCakes118
-
Size
184KB
-
MD5
468b4ae73eaa9c1445bf069653d6c45b
-
SHA1
918b5fede56f46341c5b70c544923e04adfa4e8e
-
SHA256
3352bdefbcbfd8025f71a52af3ba998a4cd18099e9e1f36168f35675396658a8
-
SHA512
4cc09d47895cb75c1f1a6ea1e5ed4ddbf849bc76c85146fb6852ff3550aa51cc2ec0e2f238b5fb0a1552384220e3f5af297f0eaf3febf26b1389eccc18c89638
-
SSDEEP
3072:Uh0mye7+v172dGubHrLgHGR8pqz+g4W/ovIZwniCn6Lr7amAX/hboqo8NFspnJzn:Kye7U172d1iGvqg4WQwZwniyQ7ZAX/hA
Score7/10-
Executes dropped EXE
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Windows security modification
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops file in System32 directory
-