General
-
Target
3dbebb977853cf9cb0f5bfbf9290ad78_JaffaCakes118
-
Size
1.0MB
-
Sample
241013-ew9dqayfkc
-
MD5
3dbebb977853cf9cb0f5bfbf9290ad78
-
SHA1
a7aae8790e5c308dd3b762dea2941f405211d1e3
-
SHA256
2bb129de496f5778c4fb1232812af5053ffef21c22f75e3a07d33f5ccb51cf20
-
SHA512
7b9446a039013454a81bfc9b420254803b7a88169bfea033a3a9a59463b3c614ec9435058f3317eef2e029f5df1563fec6333d68d301bbc3c44bc586d5615567
-
SSDEEP
24576:4LiT/GCVrDw4T/0dXeCGFykWrhqcGdhoKbpX9:4LarEtYCq/WrhqcET1X9
Malware Config
Targets
-
-
Target
3dbebb977853cf9cb0f5bfbf9290ad78_JaffaCakes118
-
Size
1.0MB
-
MD5
3dbebb977853cf9cb0f5bfbf9290ad78
-
SHA1
a7aae8790e5c308dd3b762dea2941f405211d1e3
-
SHA256
2bb129de496f5778c4fb1232812af5053ffef21c22f75e3a07d33f5ccb51cf20
-
SHA512
7b9446a039013454a81bfc9b420254803b7a88169bfea033a3a9a59463b3c614ec9435058f3317eef2e029f5df1563fec6333d68d301bbc3c44bc586d5615567
-
SSDEEP
24576:4LiT/GCVrDw4T/0dXeCGFykWrhqcGdhoKbpX9:4LarEtYCq/WrhqcET1X9
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-