General

  • Target

    JaffaCakes118_5ce27744226f3849a55a458afa409bd9

  • Size

    546KB

  • Sample

    250115-vh2pqazphk

  • MD5

    5ce27744226f3849a55a458afa409bd9

  • SHA1

    cc5eaf38b5462085f7c9794771848afd8d351ca3

  • SHA256

    2aa1314be0c7acd01b59398ce26d895f02a7793dcb16fcf3f99de0a879bc7030

  • SHA512

    39d5452c80a06a180b2f19d67bef2f2c931e617a7fa45dcecc9c282484c387a7c768601062c4be5dbaa4b5685b104253cc7010257689b51dfd8821d6b84fb965

  • SSDEEP

    12288:KSiKVtSG2dKqs1+CneWrN557DfLque1VA0g7QTMMl7:KvAiT+55nfuue1mdQTMMl7

Malware Config

Targets

    • Target

      JaffaCakes118_5ce27744226f3849a55a458afa409bd9

    • Size

      546KB

    • MD5

      5ce27744226f3849a55a458afa409bd9

    • SHA1

      cc5eaf38b5462085f7c9794771848afd8d351ca3

    • SHA256

      2aa1314be0c7acd01b59398ce26d895f02a7793dcb16fcf3f99de0a879bc7030

    • SHA512

      39d5452c80a06a180b2f19d67bef2f2c931e617a7fa45dcecc9c282484c387a7c768601062c4be5dbaa4b5685b104253cc7010257689b51dfd8821d6b84fb965

    • SSDEEP

      12288:KSiKVtSG2dKqs1+CneWrN557DfLque1VA0g7QTMMl7:KvAiT+55nfuue1mdQTMMl7

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks