45e5f665d3bca015dcd3e0e5c4864763f197b0a6843f83f45fd4c19f8a800cb6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e86fa3eed6dc6dd55ceca37d52c78cc0_JaffaCakes118
Size

1.2MB
Sample

240408-z5yc2acb59
MD5

e86fa3eed6dc6dd55ceca37d52c78cc0
SHA1

50997c2d875f00a6b503d4b42c9de9d0e10bc4cd
SHA256

45e5f665d3bca015dcd3e0e5c4864763f197b0a6843f83f45fd4c19f8a800cb6
SHA512

aaf19b4932d301cc13364e927c2d739d52a5a1fa69a7002e471fd7ef3d5050b46a07927636e56c1e27732b2733b5a305ae24b92df9b8327f690f53e84d6dacf4
SSDEEP

24576:LP1wifXGoLT/xA8oL09S3fhzRnpIiAioaAU/sjLD2:LP11fXGoLT/xroL08hzRnpIZoAmsjLD

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  e86fa3eed6dc6dd55ceca37d52c78cc0_JaffaCakes118
- Size
  
  1.2MB
- MD5
  
  e86fa3eed6dc6dd55ceca37d52c78cc0
- SHA1
  
  50997c2d875f00a6b503d4b42c9de9d0e10bc4cd
- SHA256
  
  45e5f665d3bca015dcd3e0e5c4864763f197b0a6843f83f45fd4c19f8a800cb6
- SHA512
  
  aaf19b4932d301cc13364e927c2d739d52a5a1fa69a7002e471fd7ef3d5050b46a07927636e56c1e27732b2733b5a305ae24b92df9b8327f690f53e84d6dacf4
- SSDEEP
  
  24576:LP1wifXGoLT/xA8oL09S3fhzRnpIiAioaAU/sjLD2:LP11fXGoLT/xroL08hzRnpIZoAmsjLD
Score

7^/10

spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2