General
-
Target
16960fe5b620ed08e95ad8d3328b6113_JaffaCakes118
-
Size
1.0MB
-
Sample
241005-hjtpaa1ejq
-
MD5
16960fe5b620ed08e95ad8d3328b6113
-
SHA1
af03204f4f5f82bb108cc75144a7a84e5bdacbb6
-
SHA256
af8a6f241be6b0b3ba54faf4ccdaa3deaf9557ec2908a648fc1eefa3af133ae9
-
SHA512
1d5aeffe5df40dd859f70de711f1740492a4c5a0bd32111f3eabc24d62d8f3030c7f10c995f603733fd6fb294d99c7254c1d024e28a433f90961769e2a390c6d
-
SSDEEP
24576:tLibutlBLaCL+olWJQ4uTcQp5iFf+gIwQMcI7mxmyV:tLr1Ln3WikQp2fHNXJmxT
Malware Config
Targets
-
-
Target
16960fe5b620ed08e95ad8d3328b6113_JaffaCakes118
-
Size
1.0MB
-
MD5
16960fe5b620ed08e95ad8d3328b6113
-
SHA1
af03204f4f5f82bb108cc75144a7a84e5bdacbb6
-
SHA256
af8a6f241be6b0b3ba54faf4ccdaa3deaf9557ec2908a648fc1eefa3af133ae9
-
SHA512
1d5aeffe5df40dd859f70de711f1740492a4c5a0bd32111f3eabc24d62d8f3030c7f10c995f603733fd6fb294d99c7254c1d024e28a433f90961769e2a390c6d
-
SSDEEP
24576:tLibutlBLaCL+olWJQ4uTcQp5iFf+gIwQMcI7mxmyV:tLr1Ln3WikQp2fHNXJmxT
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-