General

  • Target

    5432f81cb0d96200c9f543003c31db72_JaffaCakes118

  • Size

    40KB

  • Sample

    240717-wwfvvawdmg

  • MD5

    5432f81cb0d96200c9f543003c31db72

  • SHA1

    3674b5ce952e3baf4217549cc7bf2f7e03e0f635

  • SHA256

    6624da77eaa73c211d7b466d02fe51ae8b1b088f989803583bbd16630b53296f

  • SHA512

    ef3fd80f60c03c63ae176e4bbd5917a1f1b159734bd346d382afab81ce41948f5199278f4e2cb4b702fdce0086a1c68066c195c5490985599e0d5a80e9c6cd4c

  • SSDEEP

    768:nyxqjQl/EMQt4Oei7RwsHxKANM0nDhlzOQdJ2tGU:yxqjQ+P04wsZLnDrCTtG

Malware Config

Targets

    • Target

      5432f81cb0d96200c9f543003c31db72_JaffaCakes118

    • Size

      40KB

    • MD5

      5432f81cb0d96200c9f543003c31db72

    • SHA1

      3674b5ce952e3baf4217549cc7bf2f7e03e0f635

    • SHA256

      6624da77eaa73c211d7b466d02fe51ae8b1b088f989803583bbd16630b53296f

    • SHA512

      ef3fd80f60c03c63ae176e4bbd5917a1f1b159734bd346d382afab81ce41948f5199278f4e2cb4b702fdce0086a1c68066c195c5490985599e0d5a80e9c6cd4c

    • SSDEEP

      768:nyxqjQl/EMQt4Oei7RwsHxKANM0nDhlzOQdJ2tGU:yxqjQ+P04wsZLnDrCTtG

    • Neshta

      Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.

    • Loads dropped DLL

    • Modifies system executable filetype association

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

MITRE ATT&CK Enterprise v15

Tasks