cde710232b602f60341ae97098354b66f15a3e5e998d42920e1af98aef54ba75 | Triage

Sharing

General

Target

0586d27b9da5537dc68d114815efc582_JaffaCakes118
Size

1.0MB
Sample

240428-s5rf6aba56
MD5

0586d27b9da5537dc68d114815efc582
SHA1

cf5508492c9ce2f2b6d5fabe51519d2633641ca5
SHA256

cde710232b602f60341ae97098354b66f15a3e5e998d42920e1af98aef54ba75
SHA512

e8a7a288e15fc4f0910696e97a4ce0683845f11cbb68a2c678d378e2ebd3668133cb1c331cd9753daa7bb985a9d2d7c908c8563ce4d00954eedcfbd061e448e8
SSDEEP

24576:ETQvtAYMyd70sKP4SAEkh6zSfjFAtxCq9JpXkziKpHen0Z:0WtAm7O4fhOeFG/9JZkziKpGC

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  0586d27b9da5537dc68d114815efc582_JaffaCakes118
- Size
  
  1.0MB
- MD5
  
  0586d27b9da5537dc68d114815efc582
- SHA1
  
  cf5508492c9ce2f2b6d5fabe51519d2633641ca5
- SHA256
  
  cde710232b602f60341ae97098354b66f15a3e5e998d42920e1af98aef54ba75
- SHA512
  
  e8a7a288e15fc4f0910696e97a4ce0683845f11cbb68a2c678d378e2ebd3668133cb1c331cd9753daa7bb985a9d2d7c908c8563ce4d00954eedcfbd061e448e8
- SSDEEP
  
  24576:ETQvtAYMyd70sKP4SAEkh6zSfjFAtxCq9JpXkziKpHen0Z:0WtAm7O4fhOeFG/9JZkziKpGC
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2