6677ee441a839726715dc1558ad82a25967c2da401ecbb2cadcbb597130c13c9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ec6d786ba28ab3e7559ed3d9c9875920_JaffaCakes118
Size

1.1MB
Sample

240411-b93asacd2s
MD5

ec6d786ba28ab3e7559ed3d9c9875920
SHA1

52b7e58d8e2cc347612c8d7263b6d54c8e940993
SHA256

6677ee441a839726715dc1558ad82a25967c2da401ecbb2cadcbb597130c13c9
SHA512

4170761d7015036613a275bcdd8ac70dae07145a553e704fe7a98bc64ce5b15c4f63f25fa03a11e9bad9f57878c44af06ad5c5babb2ccf9a5fb1a6db9cd1448c
SSDEEP

24576:5HU5gX549yRs5+nw3kLFwwCNT/XGbsmazo:pIozRs5+nGkL2TPvma

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  ec6d786ba28ab3e7559ed3d9c9875920_JaffaCakes118
- Size
  
  1.1MB
- MD5
  
  ec6d786ba28ab3e7559ed3d9c9875920
- SHA1
  
  52b7e58d8e2cc347612c8d7263b6d54c8e940993
- SHA256
  
  6677ee441a839726715dc1558ad82a25967c2da401ecbb2cadcbb597130c13c9
- SHA512
  
  4170761d7015036613a275bcdd8ac70dae07145a553e704fe7a98bc64ce5b15c4f63f25fa03a11e9bad9f57878c44af06ad5c5babb2ccf9a5fb1a6db9cd1448c
- SSDEEP
  
  24576:5HU5gX549yRs5+nw3kLFwwCNT/XGbsmazo:pIozRs5+nGkL2TPvma
Score

7^/10

spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2