General
-
Target
eade9d7a169145e766fb373ea2e99bb6_JaffaCakes118
-
Size
1.4MB
-
Sample
240919-jhw9fsxerg
-
MD5
eade9d7a169145e766fb373ea2e99bb6
-
SHA1
a45154dab2398a6c904b86c16423c10584bda408
-
SHA256
ffb42c7422983c3edf194aaf4e46f711d3d23bbd9d4e7ccaeb4d82467a3e7946
-
SHA512
48b596a0e0702afcb0e59159397b292b1149fc9ca5761791d8a0304235484bac1d7320ebb9cb977d26f749d35e694767676b094d9e8bb57f5cf03d4f3e86128b
-
SSDEEP
12288:OdpJ16Gna4296REllPaa5LiIU/fsh4V6jnB0KJFx+I3IxAOzK6+44EwgwIVM12ca:OdpJxZollUF/iu
Malware Config
Targets
-
-
Target
eade9d7a169145e766fb373ea2e99bb6_JaffaCakes118
-
Size
1.4MB
-
MD5
eade9d7a169145e766fb373ea2e99bb6
-
SHA1
a45154dab2398a6c904b86c16423c10584bda408
-
SHA256
ffb42c7422983c3edf194aaf4e46f711d3d23bbd9d4e7ccaeb4d82467a3e7946
-
SHA512
48b596a0e0702afcb0e59159397b292b1149fc9ca5761791d8a0304235484bac1d7320ebb9cb977d26f749d35e694767676b094d9e8bb57f5cf03d4f3e86128b
-
SSDEEP
12288:OdpJ16Gna4296REllPaa5LiIU/fsh4V6jnB0KJFx+I3IxAOzK6+44EwgwIVM12ca:OdpJxZollUF/iu
Score7/10-
Executes dropped EXE
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Unsecured Credentials: Credentials In Files
Steal credentials from unsecured files.
-
Windows security modification
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops desktop.ini file(s)
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops file in System32 directory
-