General

  • Target

    JaffaCakes118_5dd6c50be8a62091289c63e4d4894228

  • Size

    557KB

  • Sample

    250115-wbwess1nhl

  • MD5

    5dd6c50be8a62091289c63e4d4894228

  • SHA1

    93ac2a3bf33e9e67ac0adffffb697ec0618708f2

  • SHA256

    1c9e9d9be12109fdce07158d79135369521b8071a62152527bcf8ffc08e5257c

  • SHA512

    5696904c5e9d744d935a6a51ef32d79d04ea7ca9fa2b3b363a866b736c516124a672fd2814001bf868b842f676fbf829a05a0863d4161266ab458b3f5ed3d428

  • SSDEEP

    12288:eGVEPcPZgv3saFLoSQLAd08auf71uwGxI2M35VnOECtXMMzD:eGVy6Zy3say7ALau2xIV35VnOEqMMzD

Malware Config

Targets

    • Target

      JaffaCakes118_5dd6c50be8a62091289c63e4d4894228

    • Size

      557KB

    • MD5

      5dd6c50be8a62091289c63e4d4894228

    • SHA1

      93ac2a3bf33e9e67ac0adffffb697ec0618708f2

    • SHA256

      1c9e9d9be12109fdce07158d79135369521b8071a62152527bcf8ffc08e5257c

    • SHA512

      5696904c5e9d744d935a6a51ef32d79d04ea7ca9fa2b3b363a866b736c516124a672fd2814001bf868b842f676fbf829a05a0863d4161266ab458b3f5ed3d428

    • SSDEEP

      12288:eGVEPcPZgv3saFLoSQLAd08auf71uwGxI2M35VnOECtXMMzD:eGVy6Zy3say7ALau2xIV35VnOEqMMzD

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks