General
-
Target
be43ec729992ece0bb2149324eaf6caa_JaffaCakes118
-
Size
1.3MB
-
Sample
241203-t2mjgatke1
-
MD5
be43ec729992ece0bb2149324eaf6caa
-
SHA1
8be096fb751c3ff60fc583c468ba4d9c3b66dc44
-
SHA256
1ed2a3eb827fd7d1372d90c89be4b7e753b817841c94929588176d355fcfe8c4
-
SHA512
370a31d130bd1a317d56c190b47d07c04367994161e7584b71c89dbfe0ba1e4e668a5e90630297ee8cba40bdc3a83ad08fe41f9db468962dcc5e9ca793fe8d72
-
SSDEEP
24576:g33RSdYIE20sCYUQxEnZ4NGAARdYRUuLHEwpzxz0DLacT06:gnRSdksCYiZ6AuLHEwpdz0DucT5
Malware Config
Targets
-
-
Target
be43ec729992ece0bb2149324eaf6caa_JaffaCakes118
-
Size
1.3MB
-
MD5
be43ec729992ece0bb2149324eaf6caa
-
SHA1
8be096fb751c3ff60fc583c468ba4d9c3b66dc44
-
SHA256
1ed2a3eb827fd7d1372d90c89be4b7e753b817841c94929588176d355fcfe8c4
-
SHA512
370a31d130bd1a317d56c190b47d07c04367994161e7584b71c89dbfe0ba1e4e668a5e90630297ee8cba40bdc3a83ad08fe41f9db468962dcc5e9ca793fe8d72
-
SSDEEP
24576:g33RSdYIE20sCYUQxEnZ4NGAARdYRUuLHEwpzxz0DLacT06:gnRSdksCYiZ6AuLHEwpdz0DucT5
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks whether UAC is enabled
-
MITRE ATT&CK Enterprise v15
Credential Access
Credentials from Password Stores
1Credentials from Web Browsers
1Unsecured Credentials
1Credentials In Files
1