General
-
Target
084a08a58d2b6c1b32089c03342d4785_JaffaCakes118
-
Size
1.0MB
-
Sample
241002-b2zvpa1cjk
-
MD5
084a08a58d2b6c1b32089c03342d4785
-
SHA1
dba90fc850449e1adc4dfb373d67374e06821ffa
-
SHA256
2bb64816e5c2add1a08be1a11bee0c36f7182fa6b0e1e6464b5146d686c11346
-
SHA512
f9682ff0a4d26053d52ce43197295725e7722bbd34bd73a9f4367845568f558a0141dbaa8df9dc61551646920adfb86e09680bea53dfc1dcc30cdc9626d285e3
-
SSDEEP
24576:4Li8e2bvaKX4k8eMgBbqHKUGoT1RVK7sERxwSifSB:4LtPbvK3YQZGopg/RgSB
Malware Config
Targets
-
-
Target
084a08a58d2b6c1b32089c03342d4785_JaffaCakes118
-
Size
1.0MB
-
MD5
084a08a58d2b6c1b32089c03342d4785
-
SHA1
dba90fc850449e1adc4dfb373d67374e06821ffa
-
SHA256
2bb64816e5c2add1a08be1a11bee0c36f7182fa6b0e1e6464b5146d686c11346
-
SHA512
f9682ff0a4d26053d52ce43197295725e7722bbd34bd73a9f4367845568f558a0141dbaa8df9dc61551646920adfb86e09680bea53dfc1dcc30cdc9626d285e3
-
SSDEEP
24576:4Li8e2bvaKX4k8eMgBbqHKUGoT1RVK7sERxwSifSB:4LtPbvK3YQZGopg/RgSB
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-