General

  • Target

    ae10f1cc817f8529fc4baad9658132fb_JaffaCakes118

  • Size

    1.2MB

  • Sample

    240820-gec1aszcnm

  • MD5

    ae10f1cc817f8529fc4baad9658132fb

  • SHA1

    20c130e623f873bffab9308daea58a8978f35576

  • SHA256

    a6e323659353f3e65cc073dd16fe2c3b544707a8efcf74f5605337fb9ecb40a3

  • SHA512

    b1924a8f4572d924d1eaa96989a57b749de0a301799d0bfb91c00957388c9d79968d53f712ff1d29d1a027264a51f635bbcf64e6e23f406f4222d01be33fdf4a

  • SSDEEP

    24576:YDUWi06YbO30iglh0xVzkUU9GVw/6LtZmXawNqBplcZhJLsrKevXP:YA8WVwv7KwNuTcZXUKEP

Malware Config

Targets

    • Target

      ae10f1cc817f8529fc4baad9658132fb_JaffaCakes118

    • Size

      1.2MB

    • MD5

      ae10f1cc817f8529fc4baad9658132fb

    • SHA1

      20c130e623f873bffab9308daea58a8978f35576

    • SHA256

      a6e323659353f3e65cc073dd16fe2c3b544707a8efcf74f5605337fb9ecb40a3

    • SHA512

      b1924a8f4572d924d1eaa96989a57b749de0a301799d0bfb91c00957388c9d79968d53f712ff1d29d1a027264a51f635bbcf64e6e23f406f4222d01be33fdf4a

    • SSDEEP

      24576:YDUWi06YbO30iglh0xVzkUU9GVw/6LtZmXawNqBplcZhJLsrKevXP:YA8WVwv7KwNuTcZXUKEP

    • Detects Strela Stealer payload

    • Strela stealer

      An info stealer targeting mail credentials first seen in late 2022.

    • Loads dropped DLL

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks