General

  • Target

    bae3318f4755a06022d4f28f46878794_JaffaCakes118

  • Size

    185KB

  • Sample

    240823-jmb43svcpq

  • MD5

    bae3318f4755a06022d4f28f46878794

  • SHA1

    d2daff850f93a5495436768e8f333f60727fe641

  • SHA256

    8cb7febbf0ca9f33304fa10eb529f7fd7a6105b4fa6af676aa0e2138c10a8068

  • SHA512

    5f71775658eb7d5d0d21c1b3c222e958b96cd5d553328737f87a7d243c2b95a493a7566ca9dd81ed623a62fbb14e7ebf90678fb7c9720cc4d2ff2a6851fbbbc3

  • SSDEEP

    3072:4NAvjiyMk96bj+ReNPpD8O5oo+g9hPp0dMqHdl7lmk/AqFYGfLGOvv1Q6hfN:4NAvjiyr9EUeNPhooz9hHqLh//vSoHQy

Malware Config

Targets

    • Target

      bae3318f4755a06022d4f28f46878794_JaffaCakes118

    • Size

      185KB

    • MD5

      bae3318f4755a06022d4f28f46878794

    • SHA1

      d2daff850f93a5495436768e8f333f60727fe641

    • SHA256

      8cb7febbf0ca9f33304fa10eb529f7fd7a6105b4fa6af676aa0e2138c10a8068

    • SHA512

      5f71775658eb7d5d0d21c1b3c222e958b96cd5d553328737f87a7d243c2b95a493a7566ca9dd81ed623a62fbb14e7ebf90678fb7c9720cc4d2ff2a6851fbbbc3

    • SSDEEP

      3072:4NAvjiyMk96bj+ReNPpD8O5oo+g9hPp0dMqHdl7lmk/AqFYGfLGOvv1Q6hfN:4NAvjiyr9EUeNPhooz9hHqLh//vSoHQy

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks