General

  • Target

    f1392d7a061333b7ae8cbece9ab87ee6_JaffaCakes118

  • Size

    3.5MB

  • Sample

    240922-eddjbszhqn

  • MD5

    f1392d7a061333b7ae8cbece9ab87ee6

  • SHA1

    e41d9fe104f221c248343f06a2151b8396068797

  • SHA256

    b5a83963be4babe4b7db2867a62484d5460a6d1b6851df9cecf47fed3ecd264e

  • SHA512

    b8d034235f5e1615b67d86988945be2a6d5fcc220687807a310915990708775d4e8c38b78cd1e37825e42540b61f9bf61d2deaaef135f613d75fc5e8f52e3b3f

  • SSDEEP

    98304:F4uEIWNLQdS40pnBUFkq16fP6j3kf+zbPa:W9ztQ8BCKWkQ

Malware Config

Targets

    • Target

      f1392d7a061333b7ae8cbece9ab87ee6_JaffaCakes118

    • Size

      3.5MB

    • MD5

      f1392d7a061333b7ae8cbece9ab87ee6

    • SHA1

      e41d9fe104f221c248343f06a2151b8396068797

    • SHA256

      b5a83963be4babe4b7db2867a62484d5460a6d1b6851df9cecf47fed3ecd264e

    • SHA512

      b8d034235f5e1615b67d86988945be2a6d5fcc220687807a310915990708775d4e8c38b78cd1e37825e42540b61f9bf61d2deaaef135f613d75fc5e8f52e3b3f

    • SSDEEP

      98304:F4uEIWNLQdS40pnBUFkq16fP6j3kf+zbPa:W9ztQ8BCKWkQ

    • Detects Strela Stealer payload

    • Strela stealer

      An info stealer targeting mail credentials first seen in late 2022.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks