General
-
Target
3e13b0e5b55799c0d3442f033786cf99_JaffaCakes118
-
Size
1.0MB
-
Sample
241013-f814jswblj
-
MD5
3e13b0e5b55799c0d3442f033786cf99
-
SHA1
0c6331c0d9b84fe31a2486da62f7e1644cd9885b
-
SHA256
9e689b773be7b44715016009a04880c5451395e0b45bc1b8f3a18ec72224e4c0
-
SHA512
4a53c22ff7182d916bdb2fd19aeceae9fb2c9796101dfb13b0c645ec601273dba5b2c740afbd8924a1a553e953254da0953fbe91a43325ed30514efb731e5262
-
SSDEEP
24576:tLiRe+gRSlSsYP5ddLRP0OHs34GiwuCS2nsu9o7:tLAe3RYStLdWOHPGruSnsui7
Malware Config
Targets
-
-
Target
3e13b0e5b55799c0d3442f033786cf99_JaffaCakes118
-
Size
1.0MB
-
MD5
3e13b0e5b55799c0d3442f033786cf99
-
SHA1
0c6331c0d9b84fe31a2486da62f7e1644cd9885b
-
SHA256
9e689b773be7b44715016009a04880c5451395e0b45bc1b8f3a18ec72224e4c0
-
SHA512
4a53c22ff7182d916bdb2fd19aeceae9fb2c9796101dfb13b0c645ec601273dba5b2c740afbd8924a1a553e953254da0953fbe91a43325ed30514efb731e5262
-
SSDEEP
24576:tLiRe+gRSlSsYP5ddLRP0OHs34GiwuCS2nsu9o7:tLAe3RYStLdWOHPGruSnsui7
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-