General

  • Target

    9b5f0322561f0be65f070f481c878227_JaffaCakes118

  • Size

    34KB

  • Sample

    240815-yfx6aszfre

  • MD5

    9b5f0322561f0be65f070f481c878227

  • SHA1

    85fac229941de8cf3c83413c7d399e6089f2f750

  • SHA256

    6cca5e12b48db0a3af1205af4cef3e9a0d0a1b401b2ee2985beacaa39a1fc211

  • SHA512

    3da652446d6bad4ba2dd4075a7047b2d7f02e061e7bfb44022067e4f42d3fb60522d8d7481966f5b8cb193a34fc614fac942a2dd4f8acbd4f25826e56c458103

  • SSDEEP

    768:kp22qWFcy5XQ7lO41uirwA98p3MpkNBxd0cJWV6dy/x9J2:kpYoX58z1uirL98xMWnT0OQ9J2

Malware Config

Targets

    • Target

      9b5f0322561f0be65f070f481c878227_JaffaCakes118

    • Size

      34KB

    • MD5

      9b5f0322561f0be65f070f481c878227

    • SHA1

      85fac229941de8cf3c83413c7d399e6089f2f750

    • SHA256

      6cca5e12b48db0a3af1205af4cef3e9a0d0a1b401b2ee2985beacaa39a1fc211

    • SHA512

      3da652446d6bad4ba2dd4075a7047b2d7f02e061e7bfb44022067e4f42d3fb60522d8d7481966f5b8cb193a34fc614fac942a2dd4f8acbd4f25826e56c458103

    • SSDEEP

      768:kp22qWFcy5XQ7lO41uirwA98p3MpkNBxd0cJWV6dy/x9J2:kpYoX58z1uirL98xMWnT0OQ9J2

    • Tinba / TinyBanker

      Banking trojan which uses packet sniffing to steal data.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks