General

  • Target

    840179c27fafc2819ff3bf643be44f49_JaffaCakes118

  • Size

    177KB

  • Sample

    240809-3mc6xsyhmb

  • MD5

    840179c27fafc2819ff3bf643be44f49

  • SHA1

    54b1efc1e19aa315c1b3d5513eb179d27216fad7

  • SHA256

    11149d26ee7217bb96766b38f98126dd7889101dfbe6175c8361da7a262c0a7f

  • SHA512

    b72cdb6e460d65ff1ebce39a6c4270d7608b89b9a8af11dac1faea656f3e0e0c0663a3bcb5063b121c782b3041b70d5d8654c650b48ed3e220971dc25cae4846

  • SSDEEP

    3072:3mRBQ+r5NBMBLcXyj5Ingr7bRti8pBvsRWi9nekl45yPKjdJZiwc7qvWXC:3U5M2XBM7dBvs9n8EgZiB7qvWXC

Malware Config

Targets

    • Target

      840179c27fafc2819ff3bf643be44f49_JaffaCakes118

    • Size

      177KB

    • MD5

      840179c27fafc2819ff3bf643be44f49

    • SHA1

      54b1efc1e19aa315c1b3d5513eb179d27216fad7

    • SHA256

      11149d26ee7217bb96766b38f98126dd7889101dfbe6175c8361da7a262c0a7f

    • SHA512

      b72cdb6e460d65ff1ebce39a6c4270d7608b89b9a8af11dac1faea656f3e0e0c0663a3bcb5063b121c782b3041b70d5d8654c650b48ed3e220971dc25cae4846

    • SSDEEP

      3072:3mRBQ+r5NBMBLcXyj5Ingr7bRti8pBvsRWi9nekl45yPKjdJZiwc7qvWXC:3U5M2XBM7dBvs9n8EgZiB7qvWXC

    • Modifies WinLogon for persistence

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks