General

  • Target

    6611fa2edd8e07be6eeed8a39a99b219_JaffaCakes118

  • Size

    69KB

  • Sample

    241021-jxl22awckh

  • MD5

    6611fa2edd8e07be6eeed8a39a99b219

  • SHA1

    6e9879f12a0c9573c69d1335adc3ae6a6b3063e1

  • SHA256

    dec931dbeb31e0912a6254b5fa1485dee4c9664304db6a61fd6eeb256d0f47aa

  • SHA512

    0c80e11a5aed34434c552b1a498b7a00b95cae09e266d48d9ff0eba3488bb191f7fa6f8ab0660e79b410b724fff3f940b03fb5e9db9e4c78f17eff21d0b4b604

  • SSDEEP

    768:HY/QH2rqKi8fThf1qGofzI6BkXoEDkhnr7N8S0n02jMgneNm/92KVDS5y127uLNE:HWqk1fofzI6BLK/scPOh7hgMNH

Malware Config

Targets

    • Target

      6611fa2edd8e07be6eeed8a39a99b219_JaffaCakes118

    • Size

      69KB

    • MD5

      6611fa2edd8e07be6eeed8a39a99b219

    • SHA1

      6e9879f12a0c9573c69d1335adc3ae6a6b3063e1

    • SHA256

      dec931dbeb31e0912a6254b5fa1485dee4c9664304db6a61fd6eeb256d0f47aa

    • SHA512

      0c80e11a5aed34434c552b1a498b7a00b95cae09e266d48d9ff0eba3488bb191f7fa6f8ab0660e79b410b724fff3f940b03fb5e9db9e4c78f17eff21d0b4b604

    • SSDEEP

      768:HY/QH2rqKi8fThf1qGofzI6BkXoEDkhnr7N8S0n02jMgneNm/92KVDS5y127uLNE:HWqk1fofzI6BLK/scPOh7hgMNH

    • Modifies firewall policy service

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks