9bc83ff6e06f69237eb24d2e369236e840d444b8695197c72eb3c636f8a22aed | Triage

Sharing

General

Target

f5d6cae77114e95c362d5ddb02d72494_JaffaCakes118
Size

1.1MB
Sample

240417-qccfesaa9x
MD5

f5d6cae77114e95c362d5ddb02d72494
SHA1

3b47b0f649bb58d2d9b9c2ad631a0ae937c08b34
SHA256

9bc83ff6e06f69237eb24d2e369236e840d444b8695197c72eb3c636f8a22aed
SHA512

20184a04103807600309c517e8643a56401348f5f776b0f3039a10adb4e0771f55125c835f441b145633721a540d0b5a4c9aeb2b7b2b8bd9e8a5019cced7c868
SSDEEP

24576:ugpWE4UI3hUW8CK2EKt65peSo40ckjWwcbKcxak6UnDPAA:TPmWVCv65ZsckjwQYnT

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  f5d6cae77114e95c362d5ddb02d72494_JaffaCakes118
- Size
  
  1.1MB
- MD5
  
  f5d6cae77114e95c362d5ddb02d72494
- SHA1
  
  3b47b0f649bb58d2d9b9c2ad631a0ae937c08b34
- SHA256
  
  9bc83ff6e06f69237eb24d2e369236e840d444b8695197c72eb3c636f8a22aed
- SHA512
  
  20184a04103807600309c517e8643a56401348f5f776b0f3039a10adb4e0771f55125c835f441b145633721a540d0b5a4c9aeb2b7b2b8bd9e8a5019cced7c868
- SSDEEP
  
  24576:ugpWE4UI3hUW8CK2EKt65peSo40ckjWwcbKcxak6UnDPAA:TPmWVCv65ZsckjwQYnT
Score

7^/10

spyware stealer
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2