127b0760ed599ba0ada0f4813dcdc0f7fe090cd1a56f0e8e00cf61703638558c | Triage

Sharing

General

Target

02a021dee4e7abaa2d0623fbab7c7aab_JaffaCakes118
Size

506KB
Sample

240427-g6xh1sdf2t
MD5

02a021dee4e7abaa2d0623fbab7c7aab
SHA1

8b17b09b074bed9e00e1314f4136e4839f26ad5f
SHA256

127b0760ed599ba0ada0f4813dcdc0f7fe090cd1a56f0e8e00cf61703638558c
SHA512

301779a5d84cbc6769d6876a644872a4c631c55f5e92df149bc95af1a3e4df13d8f71e0f604da6897e5dd47f11eeb2a48c2c6a73ecf2f4f02b4fcd369b510c4d
SSDEEP

12288:NMyFZKDPrOSR/lG3lTNw8kPirhTi7BuuSUvLt5g:FFIP4L9kPirFitJDng

Score

7^/10

spyware stealer

Malware Config

Targets

- Target
  
  02a021dee4e7abaa2d0623fbab7c7aab_JaffaCakes118
- Size
  
  506KB
- MD5
  
  02a021dee4e7abaa2d0623fbab7c7aab
- SHA1
  
  8b17b09b074bed9e00e1314f4136e4839f26ad5f
- SHA256
  
  127b0760ed599ba0ada0f4813dcdc0f7fe090cd1a56f0e8e00cf61703638558c
- SHA512
  
  301779a5d84cbc6769d6876a644872a4c631c55f5e92df149bc95af1a3e4df13d8f71e0f604da6897e5dd47f11eeb2a48c2c6a73ecf2f4f02b4fcd369b510c4d
- SSDEEP
  
  12288:NMyFZKDPrOSR/lG3lTNw8kPirhTi7BuuSUvLt5g:FFIP4L9kPirFitJDng
Score

7^/10

spyware stealer
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- Checks for any installed AV software in registry
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Software Discovery

Security Software Discovery

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2