General

  • Target

    8f6ba33395c096f4cd3a5572513a6492_JaffaCakes118

  • Size

    1.3MB

  • Sample

    241104-ga4bpatqh1

  • MD5

    8f6ba33395c096f4cd3a5572513a6492

  • SHA1

    087435ed6805a7fefedfd7ff53ca4aa23af8206d

  • SHA256

    821bfb0b087788c1486307a4b4ddf7b4735624485d9441c7f9132e498b6fb7c2

  • SHA512

    472c050cbe8bbdc38ad73ff4a09e7857e70d7b18763250b5a58ca209a8c7edf52a00231255799927389684f3d5f19aa37f866fdd2b27498c0141ce2196ff0581

  • SSDEEP

    24576:g33RSdYIE20sCYUQxEnZ4NGAARdYRUuLHEwpzxz0DLacT06:gnRSdksCYiZ6AuLHEwpdz0DucT5

Malware Config

Targets

    • Target

      8f6ba33395c096f4cd3a5572513a6492_JaffaCakes118

    • Size

      1.3MB

    • MD5

      8f6ba33395c096f4cd3a5572513a6492

    • SHA1

      087435ed6805a7fefedfd7ff53ca4aa23af8206d

    • SHA256

      821bfb0b087788c1486307a4b4ddf7b4735624485d9441c7f9132e498b6fb7c2

    • SHA512

      472c050cbe8bbdc38ad73ff4a09e7857e70d7b18763250b5a58ca209a8c7edf52a00231255799927389684f3d5f19aa37f866fdd2b27498c0141ce2196ff0581

    • SSDEEP

      24576:g33RSdYIE20sCYUQxEnZ4NGAARdYRUuLHEwpzxz0DLacT06:gnRSdksCYiZ6AuLHEwpdz0DucT5

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks whether UAC is enabled

MITRE ATT&CK Enterprise v15

Tasks