General
-
Target
3014d54fa1bd597f1957eab8a7f9351f_JaffaCakes118
-
Size
28KB
-
Sample
241010-qnjc4sshkm
-
MD5
3014d54fa1bd597f1957eab8a7f9351f
-
SHA1
75c3b33e50c52ca755d5754160f0819597996e7e
-
SHA256
f3332700d501616c7274938dfc8898e1f04580816aa14bf4ddd39136612cb98c
-
SHA512
11d721e72dadc91618f16c5e01d0c8513b9998c9847a9be7eac7bb92ea46ba038d05b5d8e72a7f982018966ecde099934f4836d5d1087f8baf740a97f326f487
-
SSDEEP
384:5DaxguFmhsqnHz8EfyFDfAtOj4b9VC66PRKIQYmKP7djbybrytz8V9tqceUwua80:5D+Lqn4Uy1Ata4bbI9/j00zgrqci8
Malware Config
Targets
-
-
Target
3014d54fa1bd597f1957eab8a7f9351f_JaffaCakes118
-
Size
28KB
-
MD5
3014d54fa1bd597f1957eab8a7f9351f
-
SHA1
75c3b33e50c52ca755d5754160f0819597996e7e
-
SHA256
f3332700d501616c7274938dfc8898e1f04580816aa14bf4ddd39136612cb98c
-
SHA512
11d721e72dadc91618f16c5e01d0c8513b9998c9847a9be7eac7bb92ea46ba038d05b5d8e72a7f982018966ecde099934f4836d5d1087f8baf740a97f326f487
-
SSDEEP
384:5DaxguFmhsqnHz8EfyFDfAtOj4b9VC66PRKIQYmKP7djbybrytz8V9tqceUwua80:5D+Lqn4Uy1Ata4bbI9/j00zgrqci8
Score7/10-
Reads user/profile data of local email clients
Email clients store some user data on disk where infostealers will often target it.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Unsecured Credentials: Credentials In Files
Steal credentials from unsecured files.
-
Accesses Microsoft Outlook profiles
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Suspicious use of SetThreadContext
-