General
-
Target
6f97efde58ad7753cf4787ead3bede68_JaffaCakes118
-
Size
96KB
-
Sample
240725-prtskssalh
-
MD5
6f97efde58ad7753cf4787ead3bede68
-
SHA1
efb8e1160e5a11d0f5809081d171c63ed851930b
-
SHA256
009db9b5c9196724f4553ce2b50eef8d3ac91ce1d23829262ed5662d50947d3e
-
SHA512
36b8de2c5139ea626c20809e9472250f64115680c0f8405333f34f6163e50253c023c2dff9afd18f0eeced479f71eeea695f917e26c775763a7e068d6fcdfa6a
-
SSDEEP
1536:nw2Jdx+X9DjtrOSw50ZMoNVQPvDFqJR2DyjvYuj7ku8RmCvQ0FW9EClES5xAGe+/:wd9NCSw50Z/NVJjvrj7qRmSQfNES5CZd
Malware Config
Targets
-
-
Target
6f97efde58ad7753cf4787ead3bede68_JaffaCakes118
-
Size
96KB
-
MD5
6f97efde58ad7753cf4787ead3bede68
-
SHA1
efb8e1160e5a11d0f5809081d171c63ed851930b
-
SHA256
009db9b5c9196724f4553ce2b50eef8d3ac91ce1d23829262ed5662d50947d3e
-
SHA512
36b8de2c5139ea626c20809e9472250f64115680c0f8405333f34f6163e50253c023c2dff9afd18f0eeced479f71eeea695f917e26c775763a7e068d6fcdfa6a
-
SSDEEP
1536:nw2Jdx+X9DjtrOSw50ZMoNVQPvDFqJR2DyjvYuj7ku8RmCvQ0FW9EClES5xAGe+/:wd9NCSw50Z/NVJjvrj7qRmSQfNES5CZd
Score8/10-
Disables RegEdit via registry modification
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops file in System32 directory
-