General

  • Target

    a589f9e2597a1135d5a2b38e3683ad69_JaffaCakes118

  • Size

    65KB

  • Sample

    240818-f1vxkazhkn

  • MD5

    a589f9e2597a1135d5a2b38e3683ad69

  • SHA1

    e25424c81c4cc389f0adf3a6c4c107aeabe02359

  • SHA256

    89b95025bf380df92f111da5f39dc5e1d93b3fbc4bb35e009fcded5ff2de7040

  • SHA512

    2e27982d0ff79f0296086c7551750c15c976bbb88cbbfac32d4a322ccd7e49dc62194d4818b00ce4684e33cde0ae695fc0de447737a18183f6334463ce333f81

  • SSDEEP

    768:7suI/OOOOmr9CXCTdw7ZcKztpL0daNYZF7pkJ9+nAblR4NLucaivcEbiVWW6Agmv:okwV5N2ZFdznbqivcEb3W6iNa8cZddbM

Malware Config

Targets

    • Target

      a589f9e2597a1135d5a2b38e3683ad69_JaffaCakes118

    • Size

      65KB

    • MD5

      a589f9e2597a1135d5a2b38e3683ad69

    • SHA1

      e25424c81c4cc389f0adf3a6c4c107aeabe02359

    • SHA256

      89b95025bf380df92f111da5f39dc5e1d93b3fbc4bb35e009fcded5ff2de7040

    • SHA512

      2e27982d0ff79f0296086c7551750c15c976bbb88cbbfac32d4a322ccd7e49dc62194d4818b00ce4684e33cde0ae695fc0de447737a18183f6334463ce333f81

    • SSDEEP

      768:7suI/OOOOmr9CXCTdw7ZcKztpL0daNYZF7pkJ9+nAblR4NLucaivcEbiVWW6Agmv:okwV5N2ZFdznbqivcEb3W6iNa8cZddbM

    • Modifies WinLogon for persistence

    • Deletes itself

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

MITRE ATT&CK Enterprise v15

Tasks