General

  • Target

    8e650f11658c18b2d0bcfb002cec2bd1_JaffaCakes118

  • Size

    1.3MB

  • Sample

    241104-bfsjgsylb1

  • MD5

    8e650f11658c18b2d0bcfb002cec2bd1

  • SHA1

    753ba1400b4bf514714129e35c9f9a0b37a1367f

  • SHA256

    9857988ae18d93fa53606c51e9c3a32e7d50e12a55a67b0e50ef8409e6848815

  • SHA512

    f18e7375c46f88f25190c83f0fea7e2ecfbd8753d670d5310263fcfb60924367a6be4d1062af06ab1743077e11e0ff45d3c5c25a047a4e3f8824462fa8ea48d4

  • SSDEEP

    24576:g33RSdYIE20sCYUQxEnZ4NGAARdYRUuLHEwpzxz0DLacT06:gnRSdksCYiZ6AuLHEwpdz0DucT5

Malware Config

Targets

    • Target

      8e650f11658c18b2d0bcfb002cec2bd1_JaffaCakes118

    • Size

      1.3MB

    • MD5

      8e650f11658c18b2d0bcfb002cec2bd1

    • SHA1

      753ba1400b4bf514714129e35c9f9a0b37a1367f

    • SHA256

      9857988ae18d93fa53606c51e9c3a32e7d50e12a55a67b0e50ef8409e6848815

    • SHA512

      f18e7375c46f88f25190c83f0fea7e2ecfbd8753d670d5310263fcfb60924367a6be4d1062af06ab1743077e11e0ff45d3c5c25a047a4e3f8824462fa8ea48d4

    • SSDEEP

      24576:g33RSdYIE20sCYUQxEnZ4NGAARdYRUuLHEwpzxz0DLacT06:gnRSdksCYiZ6AuLHEwpdz0DucT5

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks whether UAC is enabled

MITRE ATT&CK Enterprise v15

Tasks