General
-
Target
a47df8f67fc30f2967cdc8bc2bc8d29d_JaffaCakes118
-
Size
359KB
-
Sample
240817-2zvq3avdlp
-
MD5
a47df8f67fc30f2967cdc8bc2bc8d29d
-
SHA1
957994954871b1692e07529c44a7b2b738fb9809
-
SHA256
c18ee1d6184e27f2601733242ca97d3793610287e21f500a44dec63a3e2b7eaa
-
SHA512
8385274650f34c598b5f63937d3f60be11fbe2aa5c31ecd57533ca406065d4c656bfedaa2ad593bfbaae2a0ca55afc3a33418b377acd3f0a4ff66288439bdc6c
-
SSDEEP
6144:DSRfjegp2U8P6o4XAYwQ85pZabJxWZ0L0nV5YJRu6I2mvzDpz:DQegpD8PWXAYwQ85KlL0V5YFazD
Malware Config
Targets
-
-
Target
a47df8f67fc30f2967cdc8bc2bc8d29d_JaffaCakes118
-
Size
359KB
-
MD5
a47df8f67fc30f2967cdc8bc2bc8d29d
-
SHA1
957994954871b1692e07529c44a7b2b738fb9809
-
SHA256
c18ee1d6184e27f2601733242ca97d3793610287e21f500a44dec63a3e2b7eaa
-
SHA512
8385274650f34c598b5f63937d3f60be11fbe2aa5c31ecd57533ca406065d4c656bfedaa2ad593bfbaae2a0ca55afc3a33418b377acd3f0a4ff66288439bdc6c
-
SSDEEP
6144:DSRfjegp2U8P6o4XAYwQ85pZabJxWZ0L0nV5YJRu6I2mvzDpz:DQegpD8PWXAYwQ85KlL0V5YFazD
Score7/10-
Executes dropped EXE
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Unsecured Credentials: Credentials In Files
Steal credentials from unsecured files.
-
Windows security modification
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops file in System32 directory
-