General

  • Target

    fc2c4564d55d5340aae353425e98f370_JaffaCakes118

  • Size

    200KB

  • Sample

    240928-m8vp4avfja

  • MD5

    fc2c4564d55d5340aae353425e98f370

  • SHA1

    475f8c68e240ee291c7c4d4867660a1099f6b8d3

  • SHA256

    5aff84d0b21ae6f2fde6a5df594eb2cf7afd9cec62fcd8e82fbb5deaae77baf5

  • SHA512

    05a6dce071efd06dcabf16ff7e78d8e3d770d69bde8e8b19815216a45557211c0d2ff0d89ebf5850d4f5f5648a9c01eb7173542938cf43e4555863f3902ca8ec

  • SSDEEP

    3072:KTqPR0yeIKDWx85IOlKeJVos/8eRwXiUUAdV95I4Rp+LH1xrl3Ez8ub8Xr:KTqPR0dIKCC0ef//uXltKc+LVsz9b8

Malware Config

Targets

    • Target

      fc2c4564d55d5340aae353425e98f370_JaffaCakes118

    • Size

      200KB

    • MD5

      fc2c4564d55d5340aae353425e98f370

    • SHA1

      475f8c68e240ee291c7c4d4867660a1099f6b8d3

    • SHA256

      5aff84d0b21ae6f2fde6a5df594eb2cf7afd9cec62fcd8e82fbb5deaae77baf5

    • SHA512

      05a6dce071efd06dcabf16ff7e78d8e3d770d69bde8e8b19815216a45557211c0d2ff0d89ebf5850d4f5f5648a9c01eb7173542938cf43e4555863f3902ca8ec

    • SSDEEP

      3072:KTqPR0yeIKDWx85IOlKeJVos/8eRwXiUUAdV95I4Rp+LH1xrl3Ez8ub8Xr:KTqPR0dIKCC0ef//uXltKc+LVsz9b8

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Suspicious use of SetThreadContext

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks