General

  • Target

    JaffaCakes118_646ed355355e69a9e1702019c176990e

  • Size

    31KB

  • Sample

    250115-28a31szrgr

  • MD5

    646ed355355e69a9e1702019c176990e

  • SHA1

    c5f985b53768b4c3b1b9c48aabd5b919bf078438

  • SHA256

    a772004ba208437a2a572ef829a192c95d0ad5748b14cfd8dbfd6805ea7464d4

  • SHA512

    de8aa84a43c2f2319f7810c69a283a605bed5be4927821439e25e49c4c7a03ef01eb26af85757aa74783b8f207f84228e163e8fffc1b26997f88152b45435235

  • SSDEEP

    768:eJKaR9JfDLt4NLyZMgzgOtptRoXF4u/0J:eFTft40ZMgzdhRoXF4u/0J

Malware Config

Targets

    • Target

      JaffaCakes118_646ed355355e69a9e1702019c176990e

    • Size

      31KB

    • MD5

      646ed355355e69a9e1702019c176990e

    • SHA1

      c5f985b53768b4c3b1b9c48aabd5b919bf078438

    • SHA256

      a772004ba208437a2a572ef829a192c95d0ad5748b14cfd8dbfd6805ea7464d4

    • SHA512

      de8aa84a43c2f2319f7810c69a283a605bed5be4927821439e25e49c4c7a03ef01eb26af85757aa74783b8f207f84228e163e8fffc1b26997f88152b45435235

    • SSDEEP

      768:eJKaR9JfDLt4NLyZMgzgOtptRoXF4u/0J:eFTft40ZMgzdhRoXF4u/0J

    • Modifies firewall policy service

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks