General

  • Target

    eb0c26613cb4b34284dd9b936e59db28_JaffaCakes118

  • Size

    1.6MB

  • Sample

    240919-lhvfza1fre

  • MD5

    eb0c26613cb4b34284dd9b936e59db28

  • SHA1

    5f1352d01de3b097a8c1a600eb0a089c0223ec9e

  • SHA256

    cebe0841efbcee04c09bf7cf10d8c6d7e963fc903e31e11cb8a1dd5ea1074c32

  • SHA512

    6cd3856fc1cad1edb79a054545061e3890fe0454cfbcdcd98775edf74a7cdf5249293fd345a1b8a4231f971134ab0f0bdb1679cc27cd569b0dc089575aca33c8

  • SSDEEP

    24576:pwNEw5EbIBqVFxmXmduv/M1NwD0gyeIeYu4D/264ChbFD79u5w:n0qcXmG/MDY0SA+BCL79

Malware Config

Targets

    • Target

      eb0c26613cb4b34284dd9b936e59db28_JaffaCakes118

    • Size

      1.6MB

    • MD5

      eb0c26613cb4b34284dd9b936e59db28

    • SHA1

      5f1352d01de3b097a8c1a600eb0a089c0223ec9e

    • SHA256

      cebe0841efbcee04c09bf7cf10d8c6d7e963fc903e31e11cb8a1dd5ea1074c32

    • SHA512

      6cd3856fc1cad1edb79a054545061e3890fe0454cfbcdcd98775edf74a7cdf5249293fd345a1b8a4231f971134ab0f0bdb1679cc27cd569b0dc089575aca33c8

    • SSDEEP

      24576:pwNEw5EbIBqVFxmXmduv/M1NwD0gyeIeYu4D/264ChbFD79u5w:n0qcXmG/MDY0SA+BCL79

    • Panda Stealer payload

    • PandaStealer

      Panda Stealer is a fork of CollectorProject Stealer written in C++.

    • Credentials from Password Stores: Credentials from Web Browsers

      Malicious Access or copy of Web Browser Credential store.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks