b50e3d0e0dc4859789afeed7a2ea8cfc04d040cb69c9dc21a6cf8cac53b8cf7c | Triage

Submit
Reports

Overview

overview

7

Static

static

7

060380a47f...18.exe

windows7-x64

7

060380a47f...18.exe

windows10-2004-x64

7

Sharing

General

Target

060380a47f18903cf85e8d2c0db9f458_JaffaCakes118
Size

588KB
Sample

240428-zbyfyage37
MD5

060380a47f18903cf85e8d2c0db9f458
SHA1

b17dabaeea7ba359de0295f35859ce72e2773d5f
SHA256

b50e3d0e0dc4859789afeed7a2ea8cfc04d040cb69c9dc21a6cf8cac53b8cf7c
SHA512

e8e9d91b2915be1d4c098057767749a713ceaeafd9bf5278b3d10a6a908533df9555f3322bfbb03d48544dfa25f7f61a0715b1f2ef029c17c44581dfe10f0b64
SSDEEP

12288:h5Uy/+pzeWbPYMk0MjwIn7KVEcOmNnJf5iGj1n9xxu:h5upzeW7Y0MjD7KucOm1Jf0Gj1n9xxu

Score

7^/10

spyware stealer upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

060380a47f18903cf85e8d2c0db9f458_JaffaCakes118.exe

Resource

win7-20240215-en

spyware stealer upx

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

060380a47f18903cf85e8d2c0db9f458_JaffaCakes118.exe

Resource

win10v2004-20240226-en

spyware stealer upx

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  060380a47f18903cf85e8d2c0db9f458_JaffaCakes118
- Size
  
  588KB
- MD5
  
  060380a47f18903cf85e8d2c0db9f458
- SHA1
  
  b17dabaeea7ba359de0295f35859ce72e2773d5f
- SHA256
  
  b50e3d0e0dc4859789afeed7a2ea8cfc04d040cb69c9dc21a6cf8cac53b8cf7c
- SHA512
  
  e8e9d91b2915be1d4c098057767749a713ceaeafd9bf5278b3d10a6a908533df9555f3322bfbb03d48544dfa25f7f61a0715b1f2ef029c17c44581dfe10f0b64
- SSDEEP
  
  12288:h5Uy/+pzeWbPYMk0MjwIn7KVEcOmNnJf5iGj1n9xxu:h5upzeW7Y0MjD7KucOm1Jf0Gj1n9xxu
Score

7^/10

spyware stealer upx
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

spywarestealerupx

behavioral2

spywarestealerupx

© 2018-2024

Terms | Privacy