General

  • Target

    65fb03460519e952331c759eab1f2bf9_JaffaCakes118

  • Size

    1.3MB

  • Sample

    241021-jafazawfrl

  • MD5

    65fb03460519e952331c759eab1f2bf9

  • SHA1

    bfacbc734df0cf52e2ba96c6337b376a50a6c946

  • SHA256

    bc5127d8c8791b9e7191fa02d0c285eb050e143200bb790a84da2d5f72086e60

  • SHA512

    8e5fa08c38ed1620312daa4a188e2192822ea7b4a3c742accc5940c7189a14ba1e65f2d20ab39a7694342eefc9701f24053e4ad15c93eef0dcde4f97a03bd099

  • SSDEEP

    24576:NrJKUKCvzuei/bc6EGn5u5TtyJ8adjCzjyhhcDkPQcKiwMH5yUKc5thLfrXa7sj0:N1Kbazur/bc6/nRJ/aOheDkPQcKiwMHX

Malware Config

Targets

    • Target

      65fb03460519e952331c759eab1f2bf9_JaffaCakes118

    • Size

      1.3MB

    • MD5

      65fb03460519e952331c759eab1f2bf9

    • SHA1

      bfacbc734df0cf52e2ba96c6337b376a50a6c946

    • SHA256

      bc5127d8c8791b9e7191fa02d0c285eb050e143200bb790a84da2d5f72086e60

    • SHA512

      8e5fa08c38ed1620312daa4a188e2192822ea7b4a3c742accc5940c7189a14ba1e65f2d20ab39a7694342eefc9701f24053e4ad15c93eef0dcde4f97a03bd099

    • SSDEEP

      24576:NrJKUKCvzuei/bc6EGn5u5TtyJ8adjCzjyhhcDkPQcKiwMH5yUKc5thLfrXa7sj0:N1Kbazur/bc6/nRJ/aOheDkPQcKiwMHX

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops Chrome extension

MITRE ATT&CK Enterprise v15

Tasks