General

  • Target

    661862515382c009d722172a687f6ce3_JaffaCakes118

  • Size

    1.1MB

  • Sample

    241021-j31sdaxhmr

  • MD5

    661862515382c009d722172a687f6ce3

  • SHA1

    626a22e2e30235f3396428bf958bc16a7777bc95

  • SHA256

    44b3dc5db272b3380887c5b32e92feab4b443fb6e91a27d66d0b5e1a7a62ec55

  • SHA512

    ac25694f15b4af4401ba593a361f8a1db3b7d880cf426228c322f093ea1e0d46ce50ac660aa38e96c595cd550da71a808d7a36f45798b6bfbb401bb8ee604623

  • SSDEEP

    24576:h1OYdaO7OBsFEt5hDG0SAMs9jR/jaJnTJdwY68+UhnWb3aQf:h1Os4OEt5hDG0SAMs9j8nTJ2Y68hWGQf

Malware Config

Targets

    • Target

      661862515382c009d722172a687f6ce3_JaffaCakes118

    • Size

      1.1MB

    • MD5

      661862515382c009d722172a687f6ce3

    • SHA1

      626a22e2e30235f3396428bf958bc16a7777bc95

    • SHA256

      44b3dc5db272b3380887c5b32e92feab4b443fb6e91a27d66d0b5e1a7a62ec55

    • SHA512

      ac25694f15b4af4401ba593a361f8a1db3b7d880cf426228c322f093ea1e0d46ce50ac660aa38e96c595cd550da71a808d7a36f45798b6bfbb401bb8ee604623

    • SSDEEP

      24576:h1OYdaO7OBsFEt5hDG0SAMs9jR/jaJnTJdwY68+UhnWb3aQf:h1Os4OEt5hDG0SAMs9j8nTJ2Y68hWGQf

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Drops Chrome extension

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v15

Tasks