General

  • Target

    JaffaCakes118_5b89aff969dcedb74d2aa748ca5b738d

  • Size

    546KB

  • Sample

    250115-terjxaxmbw

  • MD5

    5b89aff969dcedb74d2aa748ca5b738d

  • SHA1

    58b9eb2a66de0ace0bec9c7b916e2ab8b9aae52e

  • SHA256

    2aa85dba0086bca40daaeb1e128427aed717812d9c1bc645608878323ff07a0c

  • SHA512

    374658dcf79e8ccbf8db9d9a2c63fcd3b4b646ea29fd9307484154eacdd33b1c72baa3b32fae4935c23cc37e685ff545d179ee53d489c6f22bbd76a02ab275b2

  • SSDEEP

    12288:eSiKVtSG2dKqs1+CneWrN557DfLque1VA0g7QTMMl7:evAiT+55nfuue1mdQTMMl7

Malware Config

Targets

    • Target

      JaffaCakes118_5b89aff969dcedb74d2aa748ca5b738d

    • Size

      546KB

    • MD5

      5b89aff969dcedb74d2aa748ca5b738d

    • SHA1

      58b9eb2a66de0ace0bec9c7b916e2ab8b9aae52e

    • SHA256

      2aa85dba0086bca40daaeb1e128427aed717812d9c1bc645608878323ff07a0c

    • SHA512

      374658dcf79e8ccbf8db9d9a2c63fcd3b4b646ea29fd9307484154eacdd33b1c72baa3b32fae4935c23cc37e685ff545d179ee53d489c6f22bbd76a02ab275b2

    • SSDEEP

      12288:eSiKVtSG2dKqs1+CneWrN557DfLque1VA0g7QTMMl7:evAiT+55nfuue1mdQTMMl7

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks