General
-
Target
3716bf4b011e0fb5f79a99ccda276874_JaffaCakes118
-
Size
1.0MB
-
Sample
241011-19exxsxbrc
-
MD5
3716bf4b011e0fb5f79a99ccda276874
-
SHA1
a1ae9515c497a2b4c31586afc18f79c4df06f74b
-
SHA256
e6fdea8a56daea0a33823c9fd7c081d229f6af62309607dcfbe6b78653f8bfbc
-
SHA512
205163586b7a8bef63943454fdc52fde3c2edaa145d7d6a082d63ff5f6acdaebe81da2500a1a9fb7c3ba597561cdcfbc787ddec7ad6509105528b295926642a6
-
SSDEEP
24576:4Li86PfLfr6aTilgTZqzVK9RLhtGOHikNey:4LT8z2WilaqzVKPhtGOH7d
Malware Config
Targets
-
-
Target
3716bf4b011e0fb5f79a99ccda276874_JaffaCakes118
-
Size
1.0MB
-
MD5
3716bf4b011e0fb5f79a99ccda276874
-
SHA1
a1ae9515c497a2b4c31586afc18f79c4df06f74b
-
SHA256
e6fdea8a56daea0a33823c9fd7c081d229f6af62309607dcfbe6b78653f8bfbc
-
SHA512
205163586b7a8bef63943454fdc52fde3c2edaa145d7d6a082d63ff5f6acdaebe81da2500a1a9fb7c3ba597561cdcfbc787ddec7ad6509105528b295926642a6
-
SSDEEP
24576:4Li86PfLfr6aTilgTZqzVK9RLhtGOHikNey:4LT8z2WilaqzVKPhtGOH7d
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-