58d58a2e765b289c5bbd9fe03a46e2d3ea19e10ab75584e588b3ac0d86df7164 | Triage

Sharing

General

Target

e9f5e009b73aa3369d4384f08a2c6da8_JaffaCakes118
Size

1.1MB
Sample

240409-pclhnaee93
MD5

e9f5e009b73aa3369d4384f08a2c6da8
SHA1

a08b8e834712d31d5ec25b73202c6140c284ee40
SHA256

58d58a2e765b289c5bbd9fe03a46e2d3ea19e10ab75584e588b3ac0d86df7164
SHA512

c08f8499b68e31f7fa745810e7e931ba792804fb1136b7d260858083710f5721282f525cf0c1c4f0e80ffcceecde91cec3ea6a6fb703ca804b8d18bf881b179c
SSDEEP

24576:ov3Pe6k1Bd/2XtmLdK50a6VccpbzVh9uATcVB9lq8fTOuo:ovFkNMt4dzwcJhoATcDDn9

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  e9f5e009b73aa3369d4384f08a2c6da8_JaffaCakes118
- Size
  
  1.1MB
- MD5
  
  e9f5e009b73aa3369d4384f08a2c6da8
- SHA1
  
  a08b8e834712d31d5ec25b73202c6140c284ee40
- SHA256
  
  58d58a2e765b289c5bbd9fe03a46e2d3ea19e10ab75584e588b3ac0d86df7164
- SHA512
  
  c08f8499b68e31f7fa745810e7e931ba792804fb1136b7d260858083710f5721282f525cf0c1c4f0e80ffcceecde91cec3ea6a6fb703ca804b8d18bf881b179c
- SSDEEP
  
  24576:ov3Pe6k1Bd/2XtmLdK50a6VccpbzVh9uATcVB9lq8fTOuo:ovFkNMt4dzwcJhoATcDDn9
Score

7^/10

spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2