General
-
Target
JaffaCakes118_d6c5cf0e6c31050c06f19dbf824d2aa8
-
Size
1.1MB
-
Sample
250110-bbqjbswnet
-
MD5
d6c5cf0e6c31050c06f19dbf824d2aa8
-
SHA1
d7dd4788fe50fec1a86f6992639f2ffb0b07b87c
-
SHA256
3db2ef3dae242116e79cea9b9f37b21b9810399cbdca9518968bf6f7d307f0ae
-
SHA512
c7447f3d7777d67707582f162b093dd306e757645d790e2c15f6073e6144cc8667b956749d4bb18cdfa747b82e452f62e4dcce3a2c26fe228853b25f30e6c3b6
-
SSDEEP
24576:pjE5JY4hhUF54clNf7+6uHAW92zt/sWu2BSMCqDoRfEtp7IX:Co54clgLH+tkWJ0Nyz
Malware Config
Targets
-
-
Target
JaffaCakes118_d6c5cf0e6c31050c06f19dbf824d2aa8
-
Size
1.1MB
-
MD5
d6c5cf0e6c31050c06f19dbf824d2aa8
-
SHA1
d7dd4788fe50fec1a86f6992639f2ffb0b07b87c
-
SHA256
3db2ef3dae242116e79cea9b9f37b21b9810399cbdca9518968bf6f7d307f0ae
-
SHA512
c7447f3d7777d67707582f162b093dd306e757645d790e2c15f6073e6144cc8667b956749d4bb18cdfa747b82e452f62e4dcce3a2c26fe228853b25f30e6c3b6
-
SSDEEP
24576:pjE5JY4hhUF54clNf7+6uHAW92zt/sWu2BSMCqDoRfEtp7IX:Co54clgLH+tkWJ0Nyz
Score10/10-
Detects Echelon Stealer payload
-
Echelon
Echelon is a .NET stealer that targets passwords from browsers, email and cryptocurrency clients.
-
Echelon family
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-