General

  • Target

    dc237d83f3b87591794d7fe40280562f_JaffaCakes118

  • Size

    48KB

  • Sample

    240912-kvka4azeqa

  • MD5

    dc237d83f3b87591794d7fe40280562f

  • SHA1

    6541a524f9ccd0ba6c2e7b80ab0ea9860394825d

  • SHA256

    96eea7a18bac190101188cf3acfeb8d56096ab385c7a0d3ec4adb978e557024e

  • SHA512

    979f2d44ea3ee56d33062f20f97112332ac0ac51311b7dfc1452d729856ba672527ee33c407e4e427cfbfa6113ad0ea0ef197230c59c6e5667a55f95d2535fcf

  • SSDEEP

    768:VeX+mfbTGJxqbHnkhTXz/aDN76SO5Nlm:VeOmXGJxqTnEXzSN76Sai

Malware Config

Targets

    • Target

      dc237d83f3b87591794d7fe40280562f_JaffaCakes118

    • Size

      48KB

    • MD5

      dc237d83f3b87591794d7fe40280562f

    • SHA1

      6541a524f9ccd0ba6c2e7b80ab0ea9860394825d

    • SHA256

      96eea7a18bac190101188cf3acfeb8d56096ab385c7a0d3ec4adb978e557024e

    • SHA512

      979f2d44ea3ee56d33062f20f97112332ac0ac51311b7dfc1452d729856ba672527ee33c407e4e427cfbfa6113ad0ea0ef197230c59c6e5667a55f95d2535fcf

    • SSDEEP

      768:VeX+mfbTGJxqbHnkhTXz/aDN76SO5Nlm:VeOmXGJxqTnEXzSN76Sai

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks