General
-
Target
3e47272d629a8fd32dc73a5b1917a3b0_JaffaCakes118
-
Size
1.1MB
-
Sample
241013-g43x1sxcrm
-
MD5
3e47272d629a8fd32dc73a5b1917a3b0
-
SHA1
4b323750a6b62b79ce457f4e14677eb2b6245b3c
-
SHA256
2b997ca096f39d8c5c769f1b54308dda7250422e4f8d073bf9fe770f215ac17d
-
SHA512
5a4e6693e8211c6c42ea6bfa2685af9a4d0196ec71281c7781f44740f91ec75e902d1488ae96b143987580b0621239c65d4d7a5d111d8a64ef313851d459d6e9
-
SSDEEP
24576:6xllVmuE1S6FZnFsVpd11G9MzL0K07acas9vE4AYn5:6xJ+1BFZ2Vpd11GqzZMasxMYn5
Malware Config
Targets
-
-
Target
3e47272d629a8fd32dc73a5b1917a3b0_JaffaCakes118
-
Size
1.1MB
-
MD5
3e47272d629a8fd32dc73a5b1917a3b0
-
SHA1
4b323750a6b62b79ce457f4e14677eb2b6245b3c
-
SHA256
2b997ca096f39d8c5c769f1b54308dda7250422e4f8d073bf9fe770f215ac17d
-
SHA512
5a4e6693e8211c6c42ea6bfa2685af9a4d0196ec71281c7781f44740f91ec75e902d1488ae96b143987580b0621239c65d4d7a5d111d8a64ef313851d459d6e9
-
SSDEEP
24576:6xllVmuE1S6FZnFsVpd11G9MzL0K07acas9vE4AYn5:6xJ+1BFZ2Vpd11GqzZMasxMYn5
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-