General
-
Target
2df1ff1c0f1470e7c5beb8a4c7df72b8_JaffaCakes118
-
Size
1.1MB
-
Sample
241009-kemraaygmj
-
MD5
2df1ff1c0f1470e7c5beb8a4c7df72b8
-
SHA1
2f7dd8869553a07709d5e884cffd519de11413c5
-
SHA256
497d2ac76d218642ef1eb1a2d0f84a7671af2b8806624c849714a7405e90410f
-
SHA512
4eecfe313bc972fbe9e3e4420fa5b62ea209e7bc235ad978f68f078ea2f5f54fda582b2d857cc0b0a5dfbc49891f7076b670a382f072eca286dbd4b80023fc68
-
SSDEEP
24576:2xllVmuE1SAy9lNaMBy9t4GdESFrjwAbwem/x/ZdvOKT+0pok:2xJ+1ly9lkM+6JSF3wjeYxkKVpv
Malware Config
Targets
-
-
Target
2df1ff1c0f1470e7c5beb8a4c7df72b8_JaffaCakes118
-
Size
1.1MB
-
MD5
2df1ff1c0f1470e7c5beb8a4c7df72b8
-
SHA1
2f7dd8869553a07709d5e884cffd519de11413c5
-
SHA256
497d2ac76d218642ef1eb1a2d0f84a7671af2b8806624c849714a7405e90410f
-
SHA512
4eecfe313bc972fbe9e3e4420fa5b62ea209e7bc235ad978f68f078ea2f5f54fda582b2d857cc0b0a5dfbc49891f7076b670a382f072eca286dbd4b80023fc68
-
SSDEEP
24576:2xllVmuE1SAy9lNaMBy9t4GdESFrjwAbwem/x/ZdvOKT+0pok:2xJ+1ly9lkM+6JSF3wjeYxkKVpv
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-