General

  • Target

    JaffaCakes118_c82f7c5268ed36d6d4493cd422d7e572

  • Size

    546KB

  • Sample

    250119-pzrm7aymbk

  • MD5

    c82f7c5268ed36d6d4493cd422d7e572

  • SHA1

    bb09b033716bd08ee5d33a88493f1e3c602a3ced

  • SHA256

    1d9794fc04b3163d80410d1a7f02b899f82dd7c310990d7a3d83e86807421ed3

  • SHA512

    459ef3331e4a442c8107d24902c1417721129ce9406d276f54bf837a39a03deb6213648daa19aa64bc80ec6df500c3060ceb981888bb6a30b597442833defcec

  • SSDEEP

    12288:3SiKVtSG2dKqs1+CneWrN557DfLque1VA0g7QTMMl7:3vAiT+55nfuue1mdQTMMl7

Malware Config

Targets

    • Target

      JaffaCakes118_c82f7c5268ed36d6d4493cd422d7e572

    • Size

      546KB

    • MD5

      c82f7c5268ed36d6d4493cd422d7e572

    • SHA1

      bb09b033716bd08ee5d33a88493f1e3c602a3ced

    • SHA256

      1d9794fc04b3163d80410d1a7f02b899f82dd7c310990d7a3d83e86807421ed3

    • SHA512

      459ef3331e4a442c8107d24902c1417721129ce9406d276f54bf837a39a03deb6213648daa19aa64bc80ec6df500c3060ceb981888bb6a30b597442833defcec

    • SSDEEP

      12288:3SiKVtSG2dKqs1+CneWrN557DfLque1VA0g7QTMMl7:3vAiT+55nfuue1mdQTMMl7

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks