General

  • Target

    d8602560bf45dfec04e97d45cd40a98f_JaffaCakes118

  • Size

    40KB

  • Sample

    241208-xg3lqssjcw

  • MD5

    d8602560bf45dfec04e97d45cd40a98f

  • SHA1

    58aa442ca3d5bf234087e3c092e65947121acefc

  • SHA256

    0f8483cb42a5049d0045f99ba41431c930d4cd3560134ff69e0ea8dbda82acc6

  • SHA512

    19c650f652982401cd0066e50c189481cca20a612edf240ff55aa3826a6c03aa5a486315b1c08a47b4c6a4e5f8ffbe904fa27b8ae1ab0d1ae34ba4d6c6f188d2

  • SSDEEP

    768:eyxqjQl/EMQt4Oei7RwsHxyP7nbxzOQdJn1MLMCh:JxqjQ+P04wsmJC41

Malware Config

Targets

    • Target

      d8602560bf45dfec04e97d45cd40a98f_JaffaCakes118

    • Size

      40KB

    • MD5

      d8602560bf45dfec04e97d45cd40a98f

    • SHA1

      58aa442ca3d5bf234087e3c092e65947121acefc

    • SHA256

      0f8483cb42a5049d0045f99ba41431c930d4cd3560134ff69e0ea8dbda82acc6

    • SHA512

      19c650f652982401cd0066e50c189481cca20a612edf240ff55aa3826a6c03aa5a486315b1c08a47b4c6a4e5f8ffbe904fa27b8ae1ab0d1ae34ba4d6c6f188d2

    • SSDEEP

      768:eyxqjQl/EMQt4Oei7RwsHxyP7nbxzOQdJn1MLMCh:JxqjQ+P04wsmJC41

    • Detect Neshta payload

    • Neshta

      Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.

    • Neshta family

    • Loads dropped DLL

    • Modifies system executable filetype association

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

MITRE ATT&CK Enterprise v15

Tasks