General
-
Target
2527c912fafe7682cd8036cbf4211529_JaffaCakes118
-
Size
1.0MB
-
Sample
241008-zgm76avamk
-
MD5
2527c912fafe7682cd8036cbf4211529
-
SHA1
c659a67422971eab3907f3591a934ec9d4774746
-
SHA256
4a35a072b52f75e7d36c8a7a8691efd132fd765c5488e0630f095d7f900f4487
-
SHA512
56784e90a9d5100ca726c0ccac68c695bad48da082edb34df4bc8e4c22bdd95fd228f1f06ae0b039b7a4c60f561fa8274d1c45399fab937ded1b216323ae339c
-
SSDEEP
24576:4LiKCv9fiq63zcOhNx8nv3Z2kgE8la4xih6kK:4Li9fen8tgLlg6kK
Malware Config
Targets
-
-
Target
2527c912fafe7682cd8036cbf4211529_JaffaCakes118
-
Size
1.0MB
-
MD5
2527c912fafe7682cd8036cbf4211529
-
SHA1
c659a67422971eab3907f3591a934ec9d4774746
-
SHA256
4a35a072b52f75e7d36c8a7a8691efd132fd765c5488e0630f095d7f900f4487
-
SHA512
56784e90a9d5100ca726c0ccac68c695bad48da082edb34df4bc8e4c22bdd95fd228f1f06ae0b039b7a4c60f561fa8274d1c45399fab937ded1b216323ae339c
-
SSDEEP
24576:4LiKCv9fiq63zcOhNx8nv3Z2kgE8la4xih6kK:4Li9fen8tgLlg6kK
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-