General

  • Target

    JaffaCakes118_5b13754cb97b399c8998212a3e509f38

  • Size

    556KB

  • Sample

    250115-s3g5psxjcs

  • MD5

    5b13754cb97b399c8998212a3e509f38

  • SHA1

    34557d7778983b9463a2e4d1016681482a49570d

  • SHA256

    1b8494880389155daa0581987a582b4e9173279c1d11901c488bfd3f001a9d09

  • SHA512

    05e20193690b28ea58fc7cc27d59e3baaa9261796157f9ff07e27d50f38c3e733aec6c2a75a02d72d75697e7fd2e83b26678e03f7b420db58177420e5240fcd7

  • SSDEEP

    12288:/GTbdAVqEPAEaCun0vUAmG01aonFP/XI4yv/ngls161yAZ82MMzu:/GTExo4NmG01lnFP/XVy3nglq6oAZJMv

Malware Config

Targets

    • Target

      JaffaCakes118_5b13754cb97b399c8998212a3e509f38

    • Size

      556KB

    • MD5

      5b13754cb97b399c8998212a3e509f38

    • SHA1

      34557d7778983b9463a2e4d1016681482a49570d

    • SHA256

      1b8494880389155daa0581987a582b4e9173279c1d11901c488bfd3f001a9d09

    • SHA512

      05e20193690b28ea58fc7cc27d59e3baaa9261796157f9ff07e27d50f38c3e733aec6c2a75a02d72d75697e7fd2e83b26678e03f7b420db58177420e5240fcd7

    • SSDEEP

      12288:/GTbdAVqEPAEaCun0vUAmG01aonFP/XI4yv/ngls161yAZ82MMzu:/GTExo4NmG01lnFP/XVy3nglq6oAZJMv

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks