General

  • Target

    66090dc6d3fce7be6f9ca75be7259b53_JaffaCakes118

  • Size

    1.1MB

  • Sample

    241021-jnwj4sxcqr

  • MD5

    66090dc6d3fce7be6f9ca75be7259b53

  • SHA1

    8048c1660ecc8178a8fc2338a3f2722abd908a91

  • SHA256

    235a4e000b1168642af643f42bf611c61a589c3fba6d2d6049bca5c8d71f9c1a

  • SHA512

    60b613a3827055c579b7b00b8396ba7a58c986b915ea61e3f84f0a644e1a886e2e435d0073a315a0a919caaed0a79ba44dd80f88df0c840381c5a6dc97604a83

  • SSDEEP

    24576:h1OYdaOVOBsFEt5hDG0SAMs9jR/jaJnTJdwY68+UhnWb3aQM:h1Os6OEt5hDG0SAMs9j8nTJ2Y68hWGQM

Malware Config

Targets

    • Target

      66090dc6d3fce7be6f9ca75be7259b53_JaffaCakes118

    • Size

      1.1MB

    • MD5

      66090dc6d3fce7be6f9ca75be7259b53

    • SHA1

      8048c1660ecc8178a8fc2338a3f2722abd908a91

    • SHA256

      235a4e000b1168642af643f42bf611c61a589c3fba6d2d6049bca5c8d71f9c1a

    • SHA512

      60b613a3827055c579b7b00b8396ba7a58c986b915ea61e3f84f0a644e1a886e2e435d0073a315a0a919caaed0a79ba44dd80f88df0c840381c5a6dc97604a83

    • SSDEEP

      24576:h1OYdaOVOBsFEt5hDG0SAMs9jR/jaJnTJdwY68+UhnWb3aQM:h1Os6OEt5hDG0SAMs9j8nTJ2Y68hWGQM

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Drops Chrome extension

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v15

Tasks