General
-
Target
0e4b5fb22a4c6d919fe4364ade2d1435_JaffaCakes118
-
Size
1.1MB
-
Sample
241003-gv4g7aycjl
-
MD5
0e4b5fb22a4c6d919fe4364ade2d1435
-
SHA1
ada472d7bcc99c1db6ee1b85755f86674ae6a662
-
SHA256
29bdf4c041421023dbc8b70181014f8c73b0d21c602917d1fe0df7dfa4b73426
-
SHA512
fb4a56524db4c0e280a908ae431cf95136139de20570278a739499d583c6b10e016a0691074d676a6f157829776329e377540fac1617d58c397c9ef68e3effc0
-
SSDEEP
24576:6xllVmuE1Sb8zz8A0vG9Y2r9x98cSM1Q8NiN6Mzqf:6xJ+1lPevG9Lmbn8NiN6MWf
Malware Config
Targets
-
-
Target
0e4b5fb22a4c6d919fe4364ade2d1435_JaffaCakes118
-
Size
1.1MB
-
MD5
0e4b5fb22a4c6d919fe4364ade2d1435
-
SHA1
ada472d7bcc99c1db6ee1b85755f86674ae6a662
-
SHA256
29bdf4c041421023dbc8b70181014f8c73b0d21c602917d1fe0df7dfa4b73426
-
SHA512
fb4a56524db4c0e280a908ae431cf95136139de20570278a739499d583c6b10e016a0691074d676a6f157829776329e377540fac1617d58c397c9ef68e3effc0
-
SSDEEP
24576:6xllVmuE1Sb8zz8A0vG9Y2r9x98cSM1Q8NiN6Mzqf:6xJ+1lPevG9Lmbn8NiN6MWf
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-