General
-
Target
43cc8f87b29c5e7e49e355afd2d52558_JaffaCakes118
-
Size
1.0MB
-
Sample
241014-x26twssapb
-
MD5
43cc8f87b29c5e7e49e355afd2d52558
-
SHA1
dd34dd89c41d427464dbea635b3e95dbc4b59c50
-
SHA256
77325c5b17e2c85457490d388967041f98b5b2c7cbc1244368c56f29696082a0
-
SHA512
3e37c09a18d23402e2895ea75eb61baf701cd8e311da48e449a27cb4643576cbc0faa34e22a61e2945f5b4bd15c5d9b98f8678f3e1a5eac8b2e10bd1fe9279db
-
SSDEEP
24576:tLi+Hub1uS3y/RKAOp+OrdpSfrpsoE9GHxeUen6vmA:tL9FS3y/QiRaGC6N
Malware Config
Targets
-
-
Target
43cc8f87b29c5e7e49e355afd2d52558_JaffaCakes118
-
Size
1.0MB
-
MD5
43cc8f87b29c5e7e49e355afd2d52558
-
SHA1
dd34dd89c41d427464dbea635b3e95dbc4b59c50
-
SHA256
77325c5b17e2c85457490d388967041f98b5b2c7cbc1244368c56f29696082a0
-
SHA512
3e37c09a18d23402e2895ea75eb61baf701cd8e311da48e449a27cb4643576cbc0faa34e22a61e2945f5b4bd15c5d9b98f8678f3e1a5eac8b2e10bd1fe9279db
-
SSDEEP
24576:tLi+Hub1uS3y/RKAOp+OrdpSfrpsoE9GHxeUen6vmA:tL9FS3y/QiRaGC6N
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-