General

  • Target

    65f6e3936dc22f316997f6fde3715bde_JaffaCakes118

  • Size

    1.0MB

  • Sample

    241021-h6757awepj

  • MD5

    65f6e3936dc22f316997f6fde3715bde

  • SHA1

    3421850a4146ea6cc2e25b40b3bf1e34b48ef049

  • SHA256

    3e3f99566e7438518fb9eee9d0fe0ec59fb8b575fdf6c3425c19e068741e1a32

  • SHA512

    4d31af73571978bf61bd1660b1386123d13c88133fbba3844427b3872dd96e9db402451c5b5eef237f9b6913294279b6fab3784e8f3614c54cd0a8c11d8e543d

  • SSDEEP

    24576:yVTVUapXh2AmNMdVA7uo4UmPRXfXpfhCzROM:M6ath2XMdVA7uvUm3fiZ

Malware Config

Targets

    • Target

      65f6e3936dc22f316997f6fde3715bde_JaffaCakes118

    • Size

      1.0MB

    • MD5

      65f6e3936dc22f316997f6fde3715bde

    • SHA1

      3421850a4146ea6cc2e25b40b3bf1e34b48ef049

    • SHA256

      3e3f99566e7438518fb9eee9d0fe0ec59fb8b575fdf6c3425c19e068741e1a32

    • SHA512

      4d31af73571978bf61bd1660b1386123d13c88133fbba3844427b3872dd96e9db402451c5b5eef237f9b6913294279b6fab3784e8f3614c54cd0a8c11d8e543d

    • SSDEEP

      24576:yVTVUapXh2AmNMdVA7uo4UmPRXfXpfhCzROM:M6ath2XMdVA7uvUm3fiZ

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks