General

  • Target

    JaffaCakes118_5d7f0c52cabe9403623d85ddf155cf9d

  • Size

    835KB

  • Sample

    250115-v2k63szjbv

  • MD5

    5d7f0c52cabe9403623d85ddf155cf9d

  • SHA1

    b330d531ca9ea3e9167ae01d7ec7386b774f681f

  • SHA256

    4bd281592ee90baab2af06f73a3148e6a6458e3c531962eaafc20099c1ec08c5

  • SHA512

    c44f7970ffa5582780eb0aa89806e4b1fb2d703e2b8b5fa0a309064fd8e6bcad8a6a00ad45c504f2d8ca8f8e2c3a2ceebb62cf5188131d255ecb5a273191d146

  • SSDEEP

    24576:f9AylKZv0IsHg3ehA48aCYZPMghVUQ2slCKiu4Zprec8n:Qv0BHg3yr8aBMmL24iuaWn

Malware Config

Targets

    • Target

      JaffaCakes118_5d7f0c52cabe9403623d85ddf155cf9d

    • Size

      835KB

    • MD5

      5d7f0c52cabe9403623d85ddf155cf9d

    • SHA1

      b330d531ca9ea3e9167ae01d7ec7386b774f681f

    • SHA256

      4bd281592ee90baab2af06f73a3148e6a6458e3c531962eaafc20099c1ec08c5

    • SHA512

      c44f7970ffa5582780eb0aa89806e4b1fb2d703e2b8b5fa0a309064fd8e6bcad8a6a00ad45c504f2d8ca8f8e2c3a2ceebb62cf5188131d255ecb5a273191d146

    • SSDEEP

      24576:f9AylKZv0IsHg3ehA48aCYZPMghVUQ2slCKiu4Zprec8n:Qv0BHg3yr8aBMmL24iuaWn

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks whether UAC is enabled

MITRE ATT&CK Enterprise v15

Tasks