General

  • Target

    b4f2af088788d5ccf12e77c21d77ee9e_JaffaCakes118

  • Size

    1.1MB

  • Sample

    241130-fytxgsyndq

  • MD5

    b4f2af088788d5ccf12e77c21d77ee9e

  • SHA1

    f6a75c0062421ce7dba584a922799743bf8344dd

  • SHA256

    3246de22d45c3a0ef2f6630fb9630b578f709bdfd8d6ee959425bcd15311e2ef

  • SHA512

    ce4c08cb4c810024a18961898f7ef3f0c4c89f2370964da0a3722a0a60116d7a05946ae518511c8faf1d9cb0d47aa7eb5035743779b5dd14aecef74fc82c0806

  • SSDEEP

    24576:6xllVmuE1SMpZST4isZ9cXtDIjfXQ6N6zh4PxbRO:6xJ+1dLSTLsZm9DKfg6N6V8xbRO

Malware Config

Targets

    • Target

      b4f2af088788d5ccf12e77c21d77ee9e_JaffaCakes118

    • Size

      1.1MB

    • MD5

      b4f2af088788d5ccf12e77c21d77ee9e

    • SHA1

      f6a75c0062421ce7dba584a922799743bf8344dd

    • SHA256

      3246de22d45c3a0ef2f6630fb9630b578f709bdfd8d6ee959425bcd15311e2ef

    • SHA512

      ce4c08cb4c810024a18961898f7ef3f0c4c89f2370964da0a3722a0a60116d7a05946ae518511c8faf1d9cb0d47aa7eb5035743779b5dd14aecef74fc82c0806

    • SSDEEP

      24576:6xllVmuE1SMpZST4isZ9cXtDIjfXQ6N6zh4PxbRO:6xJ+1dLSTLsZm9DKfg6N6V8xbRO

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Drops Chrome extension

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v15

Tasks