General

  • Target

    558c2a30ceb6658f706284505ca606c1_JaffaCakes118

  • Size

    40KB

  • Sample

    240718-ben5nsxglr

  • MD5

    558c2a30ceb6658f706284505ca606c1

  • SHA1

    d17fa5f39aa99f6a6e8a457fdd8467ae7d997c67

  • SHA256

    cca2e218de8c7978821316b65cdbd0e60c531401548f53fd6d771f0beb5284cf

  • SHA512

    bf4e28ccf562ad542abb5a2322680b2a59f02f041f8bbddab6ecec939e2117fee065645d58575f82ff21de4e3682671a21b2fec9f9b8cba1ac3893640cf16de7

  • SSDEEP

    768:eyxqjQl/EMQt4Oei7RwsHxyP7nbxzOQdJX3KE:JxqjQ+P04wsmJC1E

Malware Config

Targets

    • Target

      558c2a30ceb6658f706284505ca606c1_JaffaCakes118

    • Size

      40KB

    • MD5

      558c2a30ceb6658f706284505ca606c1

    • SHA1

      d17fa5f39aa99f6a6e8a457fdd8467ae7d997c67

    • SHA256

      cca2e218de8c7978821316b65cdbd0e60c531401548f53fd6d771f0beb5284cf

    • SHA512

      bf4e28ccf562ad542abb5a2322680b2a59f02f041f8bbddab6ecec939e2117fee065645d58575f82ff21de4e3682671a21b2fec9f9b8cba1ac3893640cf16de7

    • SSDEEP

      768:eyxqjQl/EMQt4Oei7RwsHxyP7nbxzOQdJX3KE:JxqjQ+P04wsmJC1E

    • Detect Neshta payload

    • Neshta

      Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.

    • Loads dropped DLL

    • Modifies system executable filetype association

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

MITRE ATT&CK Enterprise v15

Tasks