c1dd8fb190e95d8530a42bec831fcffbfdad0b6091d79008dc6828ef1587b44e | Triage

Sharing

General

Target

faa4540e9de679f1ccebd8919086707b_JaffaCakes118
Size

225KB
Sample

240419-ta57hahc2z
MD5

faa4540e9de679f1ccebd8919086707b
SHA1

244b5ca95e41f263e8357bb9ca5343623f07afe3
SHA256

c1dd8fb190e95d8530a42bec831fcffbfdad0b6091d79008dc6828ef1587b44e
SHA512

65f0d2baf3a3db9c77ed4607978e1ddae1513b60b1678fcab08bde0e1417f8381d62be2c546c9c674d3206fd5711e7482286831be93ccd8fd0abd137b2cab9ac
SSDEEP

6144:Xyku6ZsZ3a7hZ4ab/p4tZxML1tAoXOHonT/:Xyku6Zs1OYiKZSzSHonT

Score

7^/10

discovery spyware stealer

Malware Config

Targets

- Target
  
  faa4540e9de679f1ccebd8919086707b_JaffaCakes118
- Size
  
  225KB
- MD5
  
  faa4540e9de679f1ccebd8919086707b
- SHA1
  
  244b5ca95e41f263e8357bb9ca5343623f07afe3
- SHA256
  
  c1dd8fb190e95d8530a42bec831fcffbfdad0b6091d79008dc6828ef1587b44e
- SHA512
  
  65f0d2baf3a3db9c77ed4607978e1ddae1513b60b1678fcab08bde0e1417f8381d62be2c546c9c674d3206fd5711e7482286831be93ccd8fd0abd137b2cab9ac
- SSDEEP
  
  6144:Xyku6ZsZ3a7hZ4ab/p4tZxML1tAoXOHonT/:Xyku6Zs1OYiKZSzSHonT
Score

7^/10

discovery spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Query Registry

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryspywarestealer

behavioral2

discoveryspywarestealer