General

  • Target

    JaffaCakes118_c64f4622a41f2010529230848ac7333d

  • Size

    546KB

  • Sample

    250119-ngkw9awjhj

  • MD5

    c64f4622a41f2010529230848ac7333d

  • SHA1

    2052befca4869b3c6836b1455a5661c7998f37ff

  • SHA256

    1b228667ee65ff634273c0c32ad6df199d7758b0f1ff2ced36d5e511e746ede8

  • SHA512

    6fdf3ae4f93271dadad1071b76e48ef7e7135bc97585de9fc2b1dda1129bd1af1bfaec72a28302f9f405cb408b5091c8cec2c6388f9857457ca3b6bb6121cd18

  • SSDEEP

    12288:FSiKVtSG2dKqs1+CneWrN557DfLque1VA0g7QTMMl7:FvAiT+55nfuue1mdQTMMl7

Malware Config

Targets

    • Target

      JaffaCakes118_c64f4622a41f2010529230848ac7333d

    • Size

      546KB

    • MD5

      c64f4622a41f2010529230848ac7333d

    • SHA1

      2052befca4869b3c6836b1455a5661c7998f37ff

    • SHA256

      1b228667ee65ff634273c0c32ad6df199d7758b0f1ff2ced36d5e511e746ede8

    • SHA512

      6fdf3ae4f93271dadad1071b76e48ef7e7135bc97585de9fc2b1dda1129bd1af1bfaec72a28302f9f405cb408b5091c8cec2c6388f9857457ca3b6bb6121cd18

    • SSDEEP

      12288:FSiKVtSG2dKqs1+CneWrN557DfLque1VA0g7QTMMl7:FvAiT+55nfuue1mdQTMMl7

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks