General

  • Target

    JaffaCakes118_438cffcbe0bcddd257c86ce1980a81e5

  • Size

    1.6MB

  • Sample

    250127-zlx8xsvmev

  • MD5

    438cffcbe0bcddd257c86ce1980a81e5

  • SHA1

    d80410a6374bec23c63c2c2898ca5b0eeea01367

  • SHA256

    94d877e0c6a51da3ee65cfa3d9962fe2b5d1ff8b60ecb335fd9cd80aad067dc1

  • SHA512

    ba6aadec610865381d5f24cf029e06ee335c1a7457d1a6c0c962065db676c9f6b753806fe080fd6cc192a3833805a0606cb64c402b9ee2ff413bb572952e13e0

  • SSDEEP

    49152:x8v2Xm2AYbySGsqfVl4QBp6xa2UckTt2jnbIO:xsYbtGs0lEaKNjbz

Malware Config

Targets

    • Target

      JaffaCakes118_438cffcbe0bcddd257c86ce1980a81e5

    • Size

      1.6MB

    • MD5

      438cffcbe0bcddd257c86ce1980a81e5

    • SHA1

      d80410a6374bec23c63c2c2898ca5b0eeea01367

    • SHA256

      94d877e0c6a51da3ee65cfa3d9962fe2b5d1ff8b60ecb335fd9cd80aad067dc1

    • SHA512

      ba6aadec610865381d5f24cf029e06ee335c1a7457d1a6c0c962065db676c9f6b753806fe080fd6cc192a3833805a0606cb64c402b9ee2ff413bb572952e13e0

    • SSDEEP

      49152:x8v2Xm2AYbySGsqfVl4QBp6xa2UckTt2jnbIO:xsYbtGs0lEaKNjbz

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks whether UAC is enabled

MITRE ATT&CK Enterprise v15

Tasks