General

  • Target

    JaffaCakes118_64e0f9464de42e6eecd7dfbf2e54c334

  • Size

    576KB

  • Sample

    250115-3nca1szpay

  • MD5

    64e0f9464de42e6eecd7dfbf2e54c334

  • SHA1

    611548a79e96837382aa40c565cb590b40ae06dc

  • SHA256

    26c461816b78dd5f14523b94e2fb8c0e393911006147e6befa1563ed70275ab7

  • SHA512

    a0fbcdcb72c72e0f2cbabc59cfb2471e720b5ba1628bd40907d8ea3791da162d0b0e9d37b1ce55dbf72651f92c11d44e1003ebe53e90827d38f12e6813c93d2f

  • SSDEEP

    12288:oQUa/MA8yiWmDUy9L3BRDhizGJ4JCUD3dzr3/ZX7du227cB:oQf/hF4/hihJCMNz7/ZrduJYB

Malware Config

Targets

    • Target

      JaffaCakes118_64e0f9464de42e6eecd7dfbf2e54c334

    • Size

      576KB

    • MD5

      64e0f9464de42e6eecd7dfbf2e54c334

    • SHA1

      611548a79e96837382aa40c565cb590b40ae06dc

    • SHA256

      26c461816b78dd5f14523b94e2fb8c0e393911006147e6befa1563ed70275ab7

    • SHA512

      a0fbcdcb72c72e0f2cbabc59cfb2471e720b5ba1628bd40907d8ea3791da162d0b0e9d37b1ce55dbf72651f92c11d44e1003ebe53e90827d38f12e6813c93d2f

    • SSDEEP

      12288:oQUa/MA8yiWmDUy9L3BRDhizGJ4JCUD3dzr3/ZX7du227cB:oQf/hF4/hihJCMNz7/ZrduJYB

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks