General

  • Target

    JaffaCakes118_d14bb627fe033bee8fb346969987e843

  • Size

    546KB

  • Sample

    250119-ygzeratldn

  • MD5

    d14bb627fe033bee8fb346969987e843

  • SHA1

    b2ec89290e6de091405f22477b1171c7b452ae5c

  • SHA256

    130eac3ac5363d74dbcf0c0be6e9028b226e0aa7bd53b313db6f2cfa01f24f76

  • SHA512

    d771e3a8e9a8fdebbf1f29397353d42a5442e437b406f0545834f46eddb6b8a642dab1904bb4a62386c053387d03f4c1b4722796864b84e798804e29ddced68e

  • SSDEEP

    12288:fSiKVtSG2dKqs1+CneWrN557DfLque1VA0g7QTMMl7:fvAiT+55nfuue1mdQTMMl7

Malware Config

Targets

    • Target

      JaffaCakes118_d14bb627fe033bee8fb346969987e843

    • Size

      546KB

    • MD5

      d14bb627fe033bee8fb346969987e843

    • SHA1

      b2ec89290e6de091405f22477b1171c7b452ae5c

    • SHA256

      130eac3ac5363d74dbcf0c0be6e9028b226e0aa7bd53b313db6f2cfa01f24f76

    • SHA512

      d771e3a8e9a8fdebbf1f29397353d42a5442e437b406f0545834f46eddb6b8a642dab1904bb4a62386c053387d03f4c1b4722796864b84e798804e29ddced68e

    • SSDEEP

      12288:fSiKVtSG2dKqs1+CneWrN557DfLque1VA0g7QTMMl7:fvAiT+55nfuue1mdQTMMl7

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks