General
-
Target
be49e3ff6675a6dcb4034a93dd53708c_JaffaCakes118
-
Size
1.3MB
-
Sample
241203-t7arvstmgs
-
MD5
be49e3ff6675a6dcb4034a93dd53708c
-
SHA1
2b60196708e7347a829438f9f56ad6ff074cade8
-
SHA256
012ff66cf04eb8529e95d7a77b46d312a4f7c7d28b289c5829dbb07d911c691d
-
SHA512
6f7d250aa650d0c6dc82cd67cec3dc8831c7822305cafcac17963eb79247717b62dd51ca4a98e037978f53794a40f413dbf20d1bb67de3b6a6d95ffb2ee89927
-
SSDEEP
24576:g33RSdYIE20sCYUQxEnZ4NGAARdYRUuLHEwpzxz0DLacT06:gnRSdksCYiZ6AuLHEwpdz0DucT5
Malware Config
Targets
-
-
Target
be49e3ff6675a6dcb4034a93dd53708c_JaffaCakes118
-
Size
1.3MB
-
MD5
be49e3ff6675a6dcb4034a93dd53708c
-
SHA1
2b60196708e7347a829438f9f56ad6ff074cade8
-
SHA256
012ff66cf04eb8529e95d7a77b46d312a4f7c7d28b289c5829dbb07d911c691d
-
SHA512
6f7d250aa650d0c6dc82cd67cec3dc8831c7822305cafcac17963eb79247717b62dd51ca4a98e037978f53794a40f413dbf20d1bb67de3b6a6d95ffb2ee89927
-
SSDEEP
24576:g33RSdYIE20sCYUQxEnZ4NGAARdYRUuLHEwpzxz0DLacT06:gnRSdksCYiZ6AuLHEwpdz0DucT5
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks whether UAC is enabled
-
MITRE ATT&CK Enterprise v15
Credential Access
Credentials from Password Stores
1Credentials from Web Browsers
1Unsecured Credentials
1Credentials In Files
1