General

  • Target

    JaffaCakes118_5d05cf11d108a00e1944c78cd0882fc1

  • Size

    563KB

  • Sample

    250115-vmqs1sypbv

  • MD5

    5d05cf11d108a00e1944c78cd0882fc1

  • SHA1

    2a3aeef7ebf68dba33e395fc54cbea3ba513bef4

  • SHA256

    144ffca168d451c13fd912f04159563edce522815e3256eb48710d4cc8827146

  • SHA512

    e6c7659d37e6a575cc5f829c8d6d86c7961c98100aa6fb91a61327d2f5879d40b68348f017627bf71674fe2038c1e0a312a141fb00eec5ee5c12e56da96cda28

  • SSDEEP

    12288:Au7khwTTB2S3fmBWYjoRQWcljYxPXyTW4T0pmh0KJMMT2:A0kS1PmBWccSljYMTWE0pm3JMMT2

Malware Config

Targets

    • Target

      JaffaCakes118_5d05cf11d108a00e1944c78cd0882fc1

    • Size

      563KB

    • MD5

      5d05cf11d108a00e1944c78cd0882fc1

    • SHA1

      2a3aeef7ebf68dba33e395fc54cbea3ba513bef4

    • SHA256

      144ffca168d451c13fd912f04159563edce522815e3256eb48710d4cc8827146

    • SHA512

      e6c7659d37e6a575cc5f829c8d6d86c7961c98100aa6fb91a61327d2f5879d40b68348f017627bf71674fe2038c1e0a312a141fb00eec5ee5c12e56da96cda28

    • SSDEEP

      12288:Au7khwTTB2S3fmBWYjoRQWcljYxPXyTW4T0pmh0KJMMT2:A0kS1PmBWccSljYMTWE0pm3JMMT2

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks