General
-
Target
418e81e96fb3beda00bdf1a2bcc49296_JaffaCakes118
-
Size
717KB
-
Sample
241013-xqteesxdqq
-
MD5
418e81e96fb3beda00bdf1a2bcc49296
-
SHA1
74bd8171e26bc2d07eacda0c185da67803687425
-
SHA256
7cce6c0640b0629ecc77f1d864b475cc29cf692fb276b4d73c4aea9e09c64b5b
-
SHA512
719ab157c26950f8c15c4628521c6954b849f9ee1d7e2953e1b2435ac54660f9903b406eb670853d39bda3182b320834ca0874a54954f27e5d33994a648ff41e
-
SSDEEP
12288:BKnekrL58EDtJ3gaCobNWhmcuNb4qM5ntwYUglM7Jx5sF93xQ3m1h8Zyu:OLiEDtJ3FDWEcuKntwYUEM7H583P1qH
Malware Config
Targets
-
-
Target
418e81e96fb3beda00bdf1a2bcc49296_JaffaCakes118
-
Size
717KB
-
MD5
418e81e96fb3beda00bdf1a2bcc49296
-
SHA1
74bd8171e26bc2d07eacda0c185da67803687425
-
SHA256
7cce6c0640b0629ecc77f1d864b475cc29cf692fb276b4d73c4aea9e09c64b5b
-
SHA512
719ab157c26950f8c15c4628521c6954b849f9ee1d7e2953e1b2435ac54660f9903b406eb670853d39bda3182b320834ca0874a54954f27e5d33994a648ff41e
-
SSDEEP
12288:BKnekrL58EDtJ3gaCobNWhmcuNb4qM5ntwYUglM7Jx5sF93xQ3m1h8Zyu:OLiEDtJ3FDWEcuKntwYUEM7H583P1qH
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-