General

  • Target

    JaffaCakes118_cf6e050dc42ecb87871e4c5548a87852

  • Size

    283KB

  • Sample

    250119-w2ws9azrdl

  • MD5

    cf6e050dc42ecb87871e4c5548a87852

  • SHA1

    2c44288041f1e4dca3c3f818d9e2c9da93c9646c

  • SHA256

    2162c4d3a7c92610ac047bfa982e2ca7a02968d89def15e321319344fe23a769

  • SHA512

    aaf33b23d31ca48919ee2430fad9a3cae666bf34d1e19a53312b4ff4c3d2f6594db54e7e80f5732664e9aed9585bf18083f99b67706147a3dc7211aa646f453a

  • SSDEEP

    6144:F+WaXryFiDOppppppppppppppppppppppppppppppppppppppppppppppppppppI:F+WUsiOppppppppppppppppppppppppo

Malware Config

Targets

    • Target

      JaffaCakes118_cf6e050dc42ecb87871e4c5548a87852

    • Size

      283KB

    • MD5

      cf6e050dc42ecb87871e4c5548a87852

    • SHA1

      2c44288041f1e4dca3c3f818d9e2c9da93c9646c

    • SHA256

      2162c4d3a7c92610ac047bfa982e2ca7a02968d89def15e321319344fe23a769

    • SHA512

      aaf33b23d31ca48919ee2430fad9a3cae666bf34d1e19a53312b4ff4c3d2f6594db54e7e80f5732664e9aed9585bf18083f99b67706147a3dc7211aa646f453a

    • SSDEEP

      6144:F+WaXryFiDOppppppppppppppppppppppppppppppppppppppppppppppppppppI:F+WUsiOppppppppppppppppppppppppo

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v15

Tasks