General

  • Target

    JaffaCakes118_c5dab2d7cd433d529f5a59ef860851cf

  • Size

    136KB

  • Sample

    250119-m4d7jsvjet

  • MD5

    c5dab2d7cd433d529f5a59ef860851cf

  • SHA1

    8a3324e594d4cde1b93ed0f78f1c8511e0f4f840

  • SHA256

    75d0ca6f822b33bef79cff448874ef16e7e2cf53fa4faeb5653ad881c63c22ba

  • SHA512

    c102f1572df0778c9d270d8d7531e122dd8cec23bf5d540e35e003d9fa78e04c35522379692b58e97723ad45e09e405eb06be050ce527c3af93268be781919f8

  • SSDEEP

    3072:62d7e0iatjYzaoGkxoNxwH1NhQ6mecIz0:6eS0iojYzaoz8xwXhho

Malware Config

Targets

    • Target

      JaffaCakes118_c5dab2d7cd433d529f5a59ef860851cf

    • Size

      136KB

    • MD5

      c5dab2d7cd433d529f5a59ef860851cf

    • SHA1

      8a3324e594d4cde1b93ed0f78f1c8511e0f4f840

    • SHA256

      75d0ca6f822b33bef79cff448874ef16e7e2cf53fa4faeb5653ad881c63c22ba

    • SHA512

      c102f1572df0778c9d270d8d7531e122dd8cec23bf5d540e35e003d9fa78e04c35522379692b58e97723ad45e09e405eb06be050ce527c3af93268be781919f8

    • SSDEEP

      3072:62d7e0iatjYzaoGkxoNxwH1NhQ6mecIz0:6eS0iojYzaoz8xwXhho

    • Modifies WinLogon for persistence

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks