General

  • Target

    JaffaCakes118_1b1b9b88f26ce4b655d6f766744f7b43

  • Size

    252KB

  • Sample

    250630-y6j2csvmw7

  • MD5

    1b1b9b88f26ce4b655d6f766744f7b43

  • SHA1

    80599d7f49776a01f78fb45bf904cf1ead77b1a7

  • SHA256

    d37337686b16db0f26d48d534fdc061bc58c4d7453ff7f7417f931c8e4a0f6f7

  • SHA512

    65893c8c6c2c4359ffdd05920129868472e64814ad279c5953b8542221c30baf36f23dcbc06494e3b6f7aa1c4bf1fdc12df8514e3379da3434f9d028d1608a9a

  • SSDEEP

    6144:91OgDPdkBAFZWjadD4scdjWfPEPeFERjIicKzV:91OgLdatifPueWj/5V

Malware Config

Targets

    • Target

      JaffaCakes118_1b1b9b88f26ce4b655d6f766744f7b43

    • Size

      252KB

    • MD5

      1b1b9b88f26ce4b655d6f766744f7b43

    • SHA1

      80599d7f49776a01f78fb45bf904cf1ead77b1a7

    • SHA256

      d37337686b16db0f26d48d534fdc061bc58c4d7453ff7f7417f931c8e4a0f6f7

    • SHA512

      65893c8c6c2c4359ffdd05920129868472e64814ad279c5953b8542221c30baf36f23dcbc06494e3b6f7aa1c4bf1fdc12df8514e3379da3434f9d028d1608a9a

    • SSDEEP

      6144:91OgDPdkBAFZWjadD4scdjWfPEPeFERjIicKzV:91OgLdatifPueWj/5V

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v16

Tasks