General
-
Target
250bc43603077991456c3705a0c6739c_JaffaCakes118
-
Size
1.0MB
-
Sample
241008-za7yzsxekc
-
MD5
250bc43603077991456c3705a0c6739c
-
SHA1
c944c45df4cffacbb6acceffe7d6d8d1365265e2
-
SHA256
0f94ecc19adb511669b47b582e811fd5da05fab19c48c3743f1052966512dd9a
-
SHA512
fcef48cbb6fd91d1b152d9e3f881d26b6953ab59356341f649a4a00d2db86dd4cd3d4ed9f6cd663733db8e2d932f9aee638455c97c8e05dfb2afe47c525b38c3
-
SSDEEP
24576:PLiBj0LrMZV/af5soiwwFhkkw8Anva2wYSpPr8fA0:PLgYXSSf5RiwwEfnSrRRr8f7
Malware Config
Targets
-
-
Target
250bc43603077991456c3705a0c6739c_JaffaCakes118
-
Size
1.0MB
-
MD5
250bc43603077991456c3705a0c6739c
-
SHA1
c944c45df4cffacbb6acceffe7d6d8d1365265e2
-
SHA256
0f94ecc19adb511669b47b582e811fd5da05fab19c48c3743f1052966512dd9a
-
SHA512
fcef48cbb6fd91d1b152d9e3f881d26b6953ab59356341f649a4a00d2db86dd4cd3d4ed9f6cd663733db8e2d932f9aee638455c97c8e05dfb2afe47c525b38c3
-
SSDEEP
24576:PLiBj0LrMZV/af5soiwwFhkkw8Anva2wYSpPr8fA0:PLgYXSSf5RiwwEfnSrRRr8f7
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-