General
-
Target
c28072106a3941932130c8db2a135555_JaffaCakes118
-
Size
1.4MB
-
Sample
240826-htj8lasfln
-
MD5
c28072106a3941932130c8db2a135555
-
SHA1
cc2aaeafa62ea06e5b07808f15a5263e04906e53
-
SHA256
06ad6118b7be37ff6f2ec22381098bbb11ec2eddfb7c6e0f8c24449a3b1b98fc
-
SHA512
0c3083f190c8a0d82340f6a3d0f64f76eb938e93d3070cf7ccd75aa501b58040b5b26ba57e1e5a5bd5d69bff07558733f68dfc00c50473842bdda9f9f7281b56
-
SSDEEP
12288:6Zzp1NI5x7k3+rcAT8U6x+3JYU82+/IvIh/QnviN9VzdvYhvb:6Zzp1YdkoUU82+Qwh/Qn89Vx
Static task
static1
Behavioral task
behavioral1
Sample
c28072106a3941932130c8db2a135555_JaffaCakes118.exe
Resource
win7-20240704-en
Malware Config
Targets
-
-
Target
c28072106a3941932130c8db2a135555_JaffaCakes118
-
Size
1.4MB
-
MD5
c28072106a3941932130c8db2a135555
-
SHA1
cc2aaeafa62ea06e5b07808f15a5263e04906e53
-
SHA256
06ad6118b7be37ff6f2ec22381098bbb11ec2eddfb7c6e0f8c24449a3b1b98fc
-
SHA512
0c3083f190c8a0d82340f6a3d0f64f76eb938e93d3070cf7ccd75aa501b58040b5b26ba57e1e5a5bd5d69bff07558733f68dfc00c50473842bdda9f9f7281b56
-
SSDEEP
12288:6Zzp1NI5x7k3+rcAT8U6x+3JYU82+/IvIh/QnviN9VzdvYhvb:6Zzp1YdkoUU82+Qwh/Qn89Vx
-
Taurus Stealer payload
-
Credentials from Password Stores: Credentials from Web Browsers
Malicious Access or copy of Web Browser Credential store.
-
Suspicious use of SetThreadContext
-