General

  • Target

    49b7acd5095d6c22b08ea2a9a7ff6309_JaffaCakes118

  • Size

    637KB

  • Sample

    241015-yms5xsyajm

  • MD5

    49b7acd5095d6c22b08ea2a9a7ff6309

  • SHA1

    69ad7cc1c5c784f1b44065602b02893dba1e9a0d

  • SHA256

    6b547003e79ea94eb8192a4d33e13aeed014116627dfde76654d90f97e326c5c

  • SHA512

    adc84bead2d8402b7d65b00268c3c9c56508c6f2d24733151ed3d3adc2fb70bee8387bcdb14283e957bf70ddf0da692d84a16bef1f8f14e252785b3c07e39be9

  • SSDEEP

    12288:wzKTBwOoP9oO6ZQTjwbkJPyXpJmuIwFPzk605Aky+oklRfg1JOpA0zvZ3:soGPyRQXkkJaXrmu05Ak6MRoXyhB

Malware Config

Targets

    • Target

      49b7acd5095d6c22b08ea2a9a7ff6309_JaffaCakes118

    • Size

      637KB

    • MD5

      49b7acd5095d6c22b08ea2a9a7ff6309

    • SHA1

      69ad7cc1c5c784f1b44065602b02893dba1e9a0d

    • SHA256

      6b547003e79ea94eb8192a4d33e13aeed014116627dfde76654d90f97e326c5c

    • SHA512

      adc84bead2d8402b7d65b00268c3c9c56508c6f2d24733151ed3d3adc2fb70bee8387bcdb14283e957bf70ddf0da692d84a16bef1f8f14e252785b3c07e39be9

    • SSDEEP

      12288:wzKTBwOoP9oO6ZQTjwbkJPyXpJmuIwFPzk605Aky+oklRfg1JOpA0zvZ3:soGPyRQXkkJaXrmu05Ak6MRoXyhB

    • Credentials from Password Stores: Windows Credential Manager

      Suspicious access to Credentials History.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks