General
-
Target
12d90815be8ad6a96ce300e1ade45006_JaffaCakes118
-
Size
1.0MB
-
Sample
241004-lwbk1s1hlf
-
MD5
12d90815be8ad6a96ce300e1ade45006
-
SHA1
f771cd87deaf3e72dcdf5d4b0cde760f9855d7fd
-
SHA256
e067a00b0792f44779e953ef31834748de73dc638841180886b9bc32040ff0a6
-
SHA512
9fedeb3b5bc80688a23961bac1830039553bcd05e33746ef63d5fcd262dd133b976d17945888bb2f75803fcf7933e769a70a253cdb80bb393a16b4e0d60802b7
-
SSDEEP
24576:tLiBRvDUVFigCs+8hSyeXbENGOpOL7pqv10I:tLCQVFZYpEBpOLtK1l
Malware Config
Targets
-
-
Target
12d90815be8ad6a96ce300e1ade45006_JaffaCakes118
-
Size
1.0MB
-
MD5
12d90815be8ad6a96ce300e1ade45006
-
SHA1
f771cd87deaf3e72dcdf5d4b0cde760f9855d7fd
-
SHA256
e067a00b0792f44779e953ef31834748de73dc638841180886b9bc32040ff0a6
-
SHA512
9fedeb3b5bc80688a23961bac1830039553bcd05e33746ef63d5fcd262dd133b976d17945888bb2f75803fcf7933e769a70a253cdb80bb393a16b4e0d60802b7
-
SSDEEP
24576:tLiBRvDUVFigCs+8hSyeXbENGOpOL7pqv10I:tLCQVFZYpEBpOLtK1l
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-